fix(deps): update dependency graphql-request to v7

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
graphql-request (source)	6.1.0 → 7.4.0

---

Release Notes

graffle-js/graffle (graphql-request)

v7.4.0

Compare Source

What's Changed

Features

• Expose response headers and body on error responses - Added headers and body properties to GraphQLResponse and GraphQLClientResponse types, making it easier to access non-GraphQL response data (e.g., 401/403/503 errors that return plain JSON instead of GraphQL).

Contributors

• @​adambrgmn (#​1476)

Full Changelog: graffle-js/graffle@7.3.5...7.4.0

v7.3.5

Compare Source

What's Changed

• feat: support TypedDocumentString from graphql-codegen by @​jasonkuhrt in #​1456
• fix: parse GraphQL errors from response body on HTTP 4xx/5xx status codes by @​jasonkuhrt in #​1457
• Fix: handle non-JSON error responses gracefully by @​jasonkuhrt in #​1459
• Revert PRs #​1457 and #​1459 - will reimplement properly by @​jasonkuhrt in #​1463
• Fix: parse GraphQL errors from 4xx/5xx responses (#​1281) by @​jasonkuhrt in #​1465
• fix: add TypedDocumentString to accepted document types by @​jasonkuhrt in #​1468

Full Changelog: graffle-js/graffle@v7.3.0...v7.3.5

v7.3.4

Compare Source

Bug Fixes

• Fixed #​1281: GraphQL errors and data are now accessible from 4xx/5xx HTTP responses
• Fixed #​1461: ClientError is properly returned for non-2xx responses with malformed bodies
• Fixed #​1462: ClientError is properly returned for non-2xx responses with unsupported content types

Changes

• Non-2xx HTTP responses now parse the response body first to extract GraphQL errors/data when available
• Non-2xx responses with valid GraphQL bodies return ClientError with errors and data accessible
• Non-2xx responses with invalid bodies still return ClientError (not generic Error) for backwards compatibility
• This release reverts PRs #​1457 and #​1459 which introduced regressions, then reapplies a minimal fix for #​1281

Breaking Changes

None - this release maintains backwards compatibility while adding support for accessing GraphQL errors from 4xx/5xx responses.

v7.3.3

Compare Source

Bug Fixes

• Non-JSON Error Response Handling: Fixed regression in 7.3.2 where servers returning HTTP 4xx/5xx status codes with non-JSON response bodies (HTML, plain text) would throw an unhelpful error: "Invalid execution result: result is not object or array" (#​1459, closes #​1458)
  • Added safe JSON parsing fallback for responses without proper Content-Type headers
  • Returns descriptive error messages with response body preview for non-JSON responses
  • Handles common production scenarios: load balancer errors (502/503 HTML pages), CDN errors, WAF/firewall responses, misconfigured servers
  • Maintains backward compatibility for servers that omit Content-Type but return valid JSON
  • Added comprehensive test coverage for HTML, plain text, and missing Content-Type scenarios

What Changed

Version 7.3.2 introduced a bug where the ELSE branch in parseResultFromResponse would pass raw strings (HTML, plain text) to a parser expecting objects/arrays. This only surfaced when:

1. Server returns 4xx/5xx status code
2. Content-Type header is missing or non-JSON (e.g., text/html, text/plain)
3. Response body is not valid JSON

This is now fixed with graceful error handling and clear error messages.

v7.3.2

Compare Source

Bug Fixes

• HTTP Error Handling: Fixed regression from v6 to v7 where HTTP 4xx/5xx responses would not include GraphQL errors from response body in ClientError (#​1457, closes #​1281)

  • Response body is now parsed before checking HTTP status
  • Users can access GraphQL errors via error.response.errors even with non-2xx status codes
  • Common use case: authentication errors (422), server errors (500)

• graphql-codegen Compatibility: Added support for TypedDocumentString from @graphql-codegen when using documentMode: 'string' (#​1456, closes #​1453)

  • Handles boxed String objects created by TypedDocumentString class
  • Normalizes document input to prevent crashes when passing to GraphQL operations

v7.3.1

Compare Source

Bug Fixes

• Fixed broken example links on npmjs.com (#​1332)
  • Updated package.json repository metadata to point to correct location: graffle-js/graffle
  • Updated homepage URL to include /tree/graphql-request path
  • Updated bugs URL to point to correct issues page
  • All example links on npm now correctly resolve to files in the graphql-request branch

Links

• npm package
• Full Changelog

v7.3.0: graphql-request v7.3.0

Compare Source

What's Changed

Features

• CommonJS Support: Added CommonJS module format () alongside ESM for better compatibility with Jest and other testing environments that aren't fully ESM-ready
• Improved Type Defaults: Default type parameters to any for easier migration and reduced type friction

Pull Requests

• feat(graphql-request): default types any and support common js #​1396

Contributors

Thanks to @​Moumouls (Antoine Cormouls) for the contribution! 🚀

---

Installation:

npm install graphql-request@7.3.0

Package: https://www.npmjs.com/package/graphql-request/v/7.3.0

v7.2.0: graphql-request@7.2.0

Compare Source

Features:

• Support GraphQL@​15 849c9ab

v7.1.2: graphql-request@7.1.2

Compare Source

Fixes:

• b732f45 Remove reference to type-fest which is not a dependency.

v7.1.1: graphql-request@7.1.1

Compare Source

Fixes

• 37445c8 Support CJS and remove Graffle code. To use Graffle by now, you should be using pnpm add graffle@next.

v7.1.0

Compare Source

Fixes

• 829028d make dprint optional dep (#​920)
• 3ba32a3 client sends accept header

Improvements

• 30b39bf improve: update all deps to latest (#​936)
• 92ea1b2 docs: mention additional requirement for TS
• 39dfb37 refactor: no mock server
• db4db92 docs: TS moduleResolution requirements

Graffle

Features

• c91bbc3 anyware hook retries (#​904)
• 6eebe6f extension system (#​871)
• 543ffdf static exec and req funcs (#​851)
• eecf7b9 incremental typed client (#​848)

Chores

• f1fd315 add publint (#​865)

v7.0.1

Compare Source

Fixes

• dc299d9 no node fs module in runtime

Improvements

• 11805c8 improve: remove needless deep imports into graphql

Chores

• ecf5032 update dependency tsx to v4.9.4 (#​843)
• 12cb8cf update dependency zod to v3.23.8 (#​836)

v7.0.0

Compare Source

BREAKING CHANGES

• 2a121c6 remove inlined graphql websocket code
• 99a192e add spec compliant default Accept header (#​618)
• 0e53aed replace GraphQLClientRequestHeaders with built-in HeadersInit type (#​616)
• c3a309f remove support for CommonJS (#​607)
• 6efcc0d remove cross-fetch polyfill
• Valid URL must be passed (no more path-only strings like /foo) (#​745)

Features

• f906d22 export request init extended type (#​812)
• cc2dc55 response middleware extra info (#​788)
• 2a121c6 (breaking) remove inlined graphql websocket code
• 0f1b7b5 exclude operation name via a field in RequestConfig (#​645)
• 99a192e (breaking) add spec compliant default Accept header (#​618)
• 0e53aed (breaking) replace GraphQLClientRequestHeaders with built-in HeadersInit type (#​616)
• c3a309f (breaking) remove support for CommonJS (#​607)
• 6efcc0d (breaking) remove cross-fetch polyfill
• e065677 export GraphQLClientRequestHeader (#​558)

Fixes

• 553006b await response middleware (#​810)
• 54da7bd alias encoding (#​809)
• 190bdd2 remove vitest import
• 5f13401 no select root types if not in schema
• ee66c10 result types have no args
• fe124de args on interfaces and unions (#​781)
• 893ad01 no infer runtime unions
• 310f10c order independent input object defs
• a71c9f8 order independent input object defs
• 118d1d7 no infer runtime objects
• 1238a1c thunk list objects
• 8a9e207 exact types on query and mutation (#​755)
• aeb6087 generated code imports
• 7d828d7 allow null data
• 0d1e1a6 imports
• 2ad3e80 schema module exports path
• b7c26f8 schema import in generated types (#​732)
• 4af7cb4 append search params (#​673)
• a169969 no GET on mutations (#​663)
• 8f926b8 do not require index sig on vars (#​659)
• 0eb8a1d export GraphQLResponse type as part of the public API (#​636)
• dbd7c7f do not overwrite user-provided Content-Type header (#​614)
• d6298a3 refactor code so linter no longer produces warnings (#​605)
• 3b7b31f ensure code formatting is correct (#​604)
• a9fcb44 add support for TypedDocumentNode to be passed to WS methods (#​585)
• c124ec8 Add ClientError to ResponseMiddleware param (#​534)

Improvements

• b1f18c1 refactor: simplify encode tests
• f333c1e refactor: single pass encode (#​807)
• dbffec8 refactor: modularize selection-set (#​806)
• 5b13f30 refactor: organize dirs by layer (#​805)
• bd5dddf docs: begin new documentation
• 05308fa improve: Node 18 tsconfig and ES2023 lib (#​794)
• 6f07a0e refactor: client modules (#​791)
• a554328 tests: refactor to one default schema (#​790)
• 893a5e0 refactor: import order
• b9888e2 refactor: client dir
• 1287eda refactor: schema module (#​770)
• c77de38 improve: upgrade to eslint 9 (#​764)
• 5fe1cea refactor: legacy becomes raw
• 9dc4d81 refactor: tidy signature
• 52f4ab8 improve: upgrade deps to latest
• cc86c34 refactor: use dprint instead of prettier (#​677)
• 080346e tests: case for overriding a built in header
• e040ec9 tests: do not retest headers init
• 4d4ac4c refactor: move existing api to legacy dir (#​670)
• 4cadba3 refactor: modualarize api (#​653)
• e5c8e7f improve: Optimised imports from graphql to decrease bundle size (#​543)

Graffle (alpha)

Features

• be48f1e rename cli to graffle
• fb715d9 generated namespace and client ctor (#​815)
• e2d1888 select (#​816)
• 4ac0cd1 use a global namespace (#​808)
• 2a39e81 rawOrThrow
• 80e050c returnMode successData (#​804)
• 7b06232 mode to return all errors (#​796)
• ae9ab07 treat schema file location as source dir
• b45dc60 use graphql return mode & named schema
• 547dfe5 can specify error type pattern in cli
• 2a77493 isError helper function
• a35be0a select type utilities (#​785)
• 45412c2 root type field methods (#​779)
• 73adae5 document method (#​774)
• 98cb065 select helper
• 420a389 add raw method
• 5de618b root field methods
• 9191249 batch method
• cebd26d support non-null interface
• b85b50b union non-null field (#​771)
• 33a0278 optional custom scalars (#​768)
• fdca0a7 index sans dollar namespace (#​767)
• 5658370 custom scalar runtime codecs (#​746)
• 0e150e4 format generated code with dprint
• 34c9e25 string support for custom scalars (#​742)
• f9ad67a support input object in selection set (#​736)
• 4318cac disable environment input, rename flag (#​731)
• 48e4d64 introduce a CLI for generating the client (#​730)
• 9640d0a introduce an experimental typescript client (#​672)

---

Configuration

📅 Schedule: Branch creation - "after 10pm every weekday,before 5am every weekday" in timezone Europe/London, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[cypress]

BanManager-WebUI    Run #9435

Run Properties:   Failed #9435  •  116272bbb2 ℹ️: Merge e32c5e2ac6be17eba449d59a6a97b97ec524cca2 into b4af94862d2b3b57e869a07e3977...

Project	BanManager-WebUI
Branch Review	renovate/graphql-request-7.x
Run status	Failed #9435
Run duration	01m 26s
Commit	116272bbb2 ℹ️: Merge e32c5e2ac6be17eba449d59a6a97b97ec524cca2 into b4af94862d2b3b57e869a07e3977...
Committer	renovate[bot]
View all properties for this run ↗︎

---

Test results
Failures	13
Flaky	0
Pending	1
Skipped	4
Passing	8
View all changes introduced in this branch ↗︎

---

Tests for review

  account/email.spec.js • 3 failed tests

View Output

Test		Artifacts
Account/Email > errors if incorrect current password		Test Replay Screenshots
Account/Email > errors email used		Test Replay Screenshots
Account/Email > successfully changes email		Test Replay Screenshots

  account/password.spec.js • 3 failed tests

View Output

Test		Artifacts
Account/Password > errors if incorrect current password		Test Replay Screenshots
Account/Password > errors if new password weak		Test Replay Screenshots
Account/Password > successfully changes password		Test Replay Screenshots

  documents.spec.js • 6 failed tests

View Output

Test		Artifacts
Document Uploads > File Selection > uploads file via attach button		Test Replay Screenshots
Document Uploads > Drag and Drop > shows drop zone highlight on drag enter		Test Replay Screenshots
Document Uploads > Paste Upload > uploads image pasted into textarea		Test Replay Screenshots
Document Uploads > File Removal > removes uploaded file from form		Test Replay Screenshots
Document Uploads > Error Handling > rejects invalid file types		Test Replay Screenshots
Document Uploads > Document Deletion (After Submission) > creates appeal with documents and can delete them		Test Replay Screenshots

  login.spec.js • 1 failed test

View Output

Test		Artifacts
Login > logs in via email		Test Replay Screenshots