Bump the packages group with 12 updates

[dependabot]

Bumps the packages group with 12 updates:

Package	From	To
@types/node	24.1.0	24.2.0
typescript-eslint	8.38.0	8.39.0
vercel	44.7.0	44.7.2
@typescript-eslint/eslint-plugin	8.38.0	8.39.0
@typescript-eslint/parser	8.38.0	8.39.0
@typescript-eslint/type-utils	8.38.0	8.39.0
@typescript-eslint/utils	8.38.0	8.39.0
@typescript-eslint/visitor-keys	8.38.0	8.39.0
@vercel/hono	0.0.8	0.0.9
@vercel/node	5.3.10	5.3.11
electron-to-chromium	1.5.194	1.5.195
undici-types	7.8.0	7.10.0

Updates @types/node from 24.1.0 to 24.2.0

Commits

• See full diff in compare view

Updates typescript-eslint from 8.38.0 to 8.39.0

Release notes

Sourced from typescript-eslint's releases.

v8.39.0

8.39.0 (2025-08-04)

🚀 Features

• update to TypeScript 5.9.2 (#11445)
• eslint-plugin: [naming-convention] add enumMember PascalCase default option (#11127)
• eslint-plugin: add no-unnecessary-type-conversion to strict-type-checked ruleset (#11427)
• eslint-plugin: [only-throw-error] support yield/await expressions (#11417)

🩹 Fixes

• eslint-plugin: [prefer-optional-chain] ignore check option for most RHS of a chain (#11272)
• eslint-plugin: [no-unsafe-assignment] add an unsafeObjectPattern message (#11403)

❤️ Thank You

• Brad Zacher @​bradzacher
• James Garbutt @​43081j
• Kim Sang Du @​developer-bandi
• Sasha Kondrashov
• tao
• Younsang Na @​nayounsang

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from typescript-eslint's changelog.

8.39.0 (2025-08-04)

🚀 Features

• update to TypeScript 5.9.2 (#11445)

❤️ Thank You

• Brad Zacher @​bradzacher

You can read about our versioning strategy and releases on our website.

Commits

• c98d513 chore(release): publish 8.39.0
• 2112d58 feat: update to TypeScript 5.9.2 (#11445)
• See full diff in compare view

Updates vercel from 44.7.0 to 44.7.2

Release notes

Sourced from vercel's releases.

vercel@44.7.2

Patch Changes

• Remove duplicate teamId param when fetching stores (#13674)

Changelog

Sourced from vercel's changelog.

44.7.2

Patch Changes

• Remove duplicate teamId param when fetching stores (#13674)

44.7.1

Patch Changes

• Updated dependencies [a4e72c3c53ddbfccfb31c483ab1e745c68282371]:
  • @​vercel/hono@​0.0.9
  • @​vercel/node@​5.3.11

Commits

• fa84f26 Version Packages (#13676)
• a18cc09 Version Packages (#13669)
• 9655b7a remove duplicate teamId query param (#13674)
• See full diff in compare view

Updates @typescript-eslint/eslint-plugin from 8.38.0 to 8.39.0

Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.39.0

8.39.0 (2025-08-04)

🚀 Features

• update to TypeScript 5.9.2 (#11445)
• eslint-plugin: [naming-convention] add enumMember PascalCase default option (#11127)
• eslint-plugin: add no-unnecessary-type-conversion to strict-type-checked ruleset (#11427)
• eslint-plugin: [only-throw-error] support yield/await expressions (#11417)

🩹 Fixes

• eslint-plugin: [prefer-optional-chain] ignore check option for most RHS of a chain (#11272)
• eslint-plugin: [no-unsafe-assignment] add an unsafeObjectPattern message (#11403)

❤️ Thank You

• Brad Zacher @​bradzacher
• James Garbutt @​43081j
• Kim Sang Du @​developer-bandi
• Sasha Kondrashov
• tao
• Younsang Na @​nayounsang

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.39.0 (2025-08-04)

🚀 Features

• eslint-plugin: [only-throw-error] support yield/await expressions (#11417)
• eslint-plugin: add no-unnecessary-type-conversion to strict-type-checked ruleset (#11427)
• update to TypeScript 5.9.2 (#11445)
• eslint-plugin: [naming-convention] add enumMember PascalCase default option (#11127)

🩹 Fixes

• eslint-plugin: [no-unsafe-assignment] add an unsafeObjectPattern message (#11403)
• eslint-plugin: [prefer-optional-chain] ignore check option for most RHS of a chain (#11272)

❤️ Thank You

• Brad Zacher @​bradzacher
• James Garbutt @​43081j
• Kim Sang Du @​developer-bandi
• Sasha Kondrashov
• tao
• Younsang Na @​nayounsang

You can read about our versioning strategy and releases on our website.

Commits

• c98d513 chore(release): publish 8.39.0
• a8def4b fix(eslint-plugin): [no-unsafe-assignment] add an unsafeObjectPattern messa...
• 422e3e2 feat(eslint-plugin): [only-throw-error] support yield/await expressions (#11417)
• e901ad8 fix(eslint-plugin): revert #11127 (#11447)
• 8dc8340 feat(eslint-plugin): add no-unnecessary-type-conversion to strict-type-checke...
• 2112d58 feat: update to TypeScript 5.9.2 (#11445)
• b872e2b feat(eslint-plugin): [naming-convention] add enumMember PascalCase default op...
• 757f9ee fix(eslint-plugin): [prefer-optional-chain] ignore check option for most RH...
• 5b24864 chore: fix dangling reference to generate:configs in comments (#11431)
• See full diff in compare view

Updates @typescript-eslint/parser from 8.38.0 to 8.39.0

Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.39.0

8.39.0 (2025-08-04)

🚀 Features

• update to TypeScript 5.9.2 (#11445)
• eslint-plugin: [naming-convention] add enumMember PascalCase default option (#11127)
• eslint-plugin: add no-unnecessary-type-conversion to strict-type-checked ruleset (#11427)
• eslint-plugin: [only-throw-error] support yield/await expressions (#11417)

🩹 Fixes

• eslint-plugin: [prefer-optional-chain] ignore check option for most RHS of a chain (#11272)
• eslint-plugin: [no-unsafe-assignment] add an unsafeObjectPattern message (#11403)

❤️ Thank You

• Brad Zacher @​bradzacher
• James Garbutt @​43081j
• Kim Sang Du @​developer-bandi
• Sasha Kondrashov
• tao
• Younsang Na @​nayounsang

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.39.0 (2025-08-04)

🚀 Features

• update to TypeScript 5.9.2 (#11445)

❤️ Thank You

• Brad Zacher @​bradzacher

You can read about our versioning strategy and releases on our website.

Commits

• c98d513 chore(release): publish 8.39.0
• 2112d58 feat: update to TypeScript 5.9.2 (#11445)
• See full diff in compare view

Updates @typescript-eslint/type-utils from 8.38.0 to 8.39.0

Release notes

Sourced from @​typescript-eslint/type-utils's releases.

v8.39.0

8.39.0 (2025-08-04)

🚀 Features

• update to TypeScript 5.9.2 (#11445)
• eslint-plugin: [naming-convention] add enumMember PascalCase default option (#11127)
• eslint-plugin: add no-unnecessary-type-conversion to strict-type-checked ruleset (#11427)
• eslint-plugin: [only-throw-error] support yield/await expressions (#11417)

🩹 Fixes

• eslint-plugin: [prefer-optional-chain] ignore check option for most RHS of a chain (#11272)
• eslint-plugin: [no-unsafe-assignment] add an unsafeObjectPattern message (#11403)

❤️ Thank You

• Brad Zacher @​bradzacher
• James Garbutt @​43081j
• Kim Sang Du @​developer-bandi
• Sasha Kondrashov
• tao
• Younsang Na @​nayounsang

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/type-utils's changelog.

8.39.0 (2025-08-04)

🚀 Features

• update to TypeScript 5.9.2 (#11445)

❤️ Thank You

• Brad Zacher @​bradzacher

You can read about our versioning strategy and releases on our website.

Commits

• c98d513 chore(release): publish 8.39.0
• 2112d58 feat: update to TypeScript 5.9.2 (#11445)
• See full diff in compare view

Updates @typescript-eslint/utils from 8.38.0 to 8.39.0

Release notes

Sourced from @​typescript-eslint/utils's releases.

v8.39.0

8.39.0 (2025-08-04)

🚀 Features

• update to TypeScript 5.9.2 (#11445)
• eslint-plugin: [naming-convention] add enumMember PascalCase default option (#11127)
• eslint-plugin: add no-unnecessary-type-conversion to strict-type-checked ruleset (#11427)
• eslint-plugin: [only-throw-error] support yield/await expressions (#11417)

🩹 Fixes

• eslint-plugin: [prefer-optional-chain] ignore check option for most RHS of a chain (#11272)
• eslint-plugin: [no-unsafe-assignment] add an unsafeObjectPattern message (#11403)

❤️ Thank You

• Brad Zacher @​bradzacher
• James Garbutt @​43081j
• Kim Sang Du @​developer-bandi
• Sasha Kondrashov
• tao
• Younsang Na @​nayounsang

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/utils's changelog.

8.39.0 (2025-08-04)

🚀 Features

• update to TypeScript 5.9.2 (#11445)

❤️ Thank You

• Brad Zacher @​bradzacher

You can read about our versioning strategy and releases on our website.

Commits

• c98d513 chore(release): publish 8.39.0
• 2112d58 feat: update to TypeScript 5.9.2 (#11445)
• See full diff in compare view

Updates @typescript-eslint/visitor-keys from 8.38.0 to 8.39.0

Release notes

Sourced from @​typescript-eslint/visitor-keys's releases.

v8.39.0

8.39.0 (2025-08-04)

🚀 Features

• update to TypeScript 5.9.2 (#11445)
• eslint-plugin: [naming-convention] add enumMember PascalCase default option (#11127)
• eslint-plugin: add no-unnecessary-type-conversion to strict-type-checked ruleset (#11427)
• eslint-plugin: [only-throw-error] support yield/await expressions (#11417)

🩹 Fixes

• eslint-plugin: [prefer-optional-chain] ignore check option for most RHS of a chain (#11272)
• eslint-plugin: [no-unsafe-assignment] add an unsafeObjectPattern message (#11403)

❤️ Thank You

• Brad Zacher @​bradzacher
• James Garbutt @​43081j
• Kim Sang Du @​developer-bandi
• Sasha Kondrashov
• tao
• Younsang Na @​nayounsang

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/visitor-keys's changelog.

8.39.0 (2025-08-04)

This was a version bump only for visitor-keys to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

• c98d513 chore(release): publish 8.39.0
• See full diff in compare view

Updates @vercel/hono from 0.0.8 to 0.0.9

Release notes

Sourced from @​vercel/hono's releases.

@​vercel/hono@​0.0.9

Patch Changes

• Support fetchable apps out of the box for Node dev server. (#13664)

  Support CommonJS for Hono

• Updated dependencies [a4e72c3c53ddbfccfb31c483ab1e745c68282371]:

  • @​vercel/node@​5.3.11

Changelog

Sourced from @​vercel/hono's changelog.

0.0.9

Patch Changes

• Support fetchable apps out of the box for Node dev server. (#13664)

  Support CommonJS for Hono

• Updated dependencies [a4e72c3c53ddbfccfb31c483ab1e745c68282371]:

  • @​vercel/node@​5.3.11

Commits

• a18cc09 Version Packages (#13669)
• a4e72c3 Support fetchable apps out of the box for Node dev server (#13664)
• See full diff in compare view

Updates @vercel/node from 5.3.10 to 5.3.11

Release notes

Sourced from @​vercel/node's releases.

@​vercel/node@​5.3.11

Patch Changes

• Support fetchable apps out of the box for Node dev server. (#13664)

  Support CommonJS for Hono

Changelog

Sourced from @​vercel/node's changelog.

5.3.11

Patch Changes

• Support fetchable apps out of the box for Node dev server. (#13664)

  Support CommonJS for Hono

Commits

• a18cc09 Version Packages (#13669)
• a4e72c3 Support fetchable apps out of the box for Node dev server (#13664)
• See full diff in compare view

Updates electron-to-chromium from 1.5.194 to 1.5.195

Commits

• See full diff in compare view

Updates undici-types from 7.8.0 to 7.10.0

Release notes

Sourced from undici-types's releases.

v7.10.0

What's Changed

• Add "clientLifetime" option to close and remove connections from the pool after a specified time. by @​dhalbrook in nodejs/undici#4175
• remove spurious only by @​mcollina in nodejs/undici#4207
• add node v24 workflow by @​tsctx in nodejs/undici#4206
• Update WPT by @​github-actions in nodejs/undici#4172
• chore: add pnpm-lock.yaml to .gitignore by @​styfle in nodejs/undici#4227
• fix: agent memory leak by @​styfle in nodejs/undici#4223
• Add ability to detect when MemoryCacheStore reaches max size by @​FelixVaughan in nodejs/undici#4224
• feat(ProxyAgent): match Curl behavior in HTTP->HTTP Proxy connections by @​caitp in nodejs/undici#4180
• docs: correct example in FormData request by @​inyourtime in nodejs/undici#4226

New Contributors

• @​dhalbrook made their first contribution in nodejs/undici#4175
• @​caitp made their first contribution in nodejs/undici#4180
• @​inyourtime made their first contribution in nodejs/undici#4226

Full Changelog: nodejs/undici@v7.9.0...v7.10.0

v7.9.0

What's Changed

• build(deps): bump step-security/harden-runner from 2.10.2 to 2.11.1 by @​dependabot in nodejs/undici#4134
• Update WPT by @​github-actions in nodejs/undici#4155
• Update WPT by @​github-actions in nodejs/undici#4170
• feat: add new acceptNonStandardSearchParameters MockAgent option by @​dario-piotrowicz in nodejs/undici#4148
• fix: cache: treat cache-control request header case-insensitively by @​alxndrsn in nodejs/undici#4131
• cache: honour unqualified no-cache response directive by @​alxndrsn in nodejs/undici#4178
• build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 by @​dependabot in nodejs/undici#4079
• Ensure conflicting flat headers in HTTP/2 are combined correctly by @​pimterry in nodejs/undici#4196
• Add stats of client and pool to be accessible through agent by @​tdeekens in nodejs/undici#4157
• Fix missing code in diagnostics example by @​islandryu in nodejs/undici#4195
• Doc cors spec compliance by @​FelixVaughan in nodejs/undici#4202
• Restore cache tests & fix max-age behavior by @​mcollina in nodejs/undici#4198

New Contributors

• @​tdeekens made their first contribution in nodejs/undici#4157
• @​islandryu made their first contribution in nodejs/undici#4195
• @​FelixVaughan made their first contribution in nodejs/undici#4202

Full Changelog: nodejs/undici@v7.8.0...v7.9.0

Commits

• 5ad8998 Bumped v7.10.0 (#4231)
• 9e0cfcb docs: correct example in FormData request (#4226)
• 95fd9d3 feat(ProxyAgent): match Curl behavior in HTTP->HTTP Proxy connections (#4180)
• a8d280c Add ability to detect when MemoryCacheStore reaches max size (#4224)
• 59940c8 fix: agent memory leak (#4223)
• 1262f61 Revert "chore: update WPT (#4172)"
• d6deb77 chore: add pnpm-lock.yaml to .gitignore (#4227)
• dcf82a7 chore: update WPT (#4172)
• 2ed2a8a add node v24 workflow (#4206)
• bf4c199 remove spurious only (#4207)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
github-rest-api-executor	❌ Failed (Inspect)			Aug 5, 2025 6:37am

[amazon-q-developer]

⏳ I'm reviewing this pull request for security vulnerabilities and code quality issues. I'll provide an update when I'm done

[amazon-q-developer]

Description: Undici is an HTTP/1.1 client for Node.js. Prior to versions 5.29.0, 6.21.2, and 7.5.0, applications that use undici to implement a webhook-like system are vulnerable. If the attacker set up a server with an invalid certificate, and they can force the application to call the webhook repeatedly, then they can cause a memory leak. This has been patched in versions 5.29.0, 6.21.2, and 7.5.0. As a workaound, avoid calling a webhook repeatedly if the webhook fails.

Relevant link: GHSA-cxrh-j4jr-qwg3

Severity: Low

[amazon-q-developer]

The vulnerability is addressed by updating the version of undici to 5.29.0, which includes the fix for the memory leak issue in webhook-like systems.

Suggested change

	undici-types@7.10.0:
	undici-types@7.10.0:
	resolution: {integrity: sha512-t5Fy/nfn+14LuOc2KNYg75vZqClpAiqscVvMygNnlsHBFpSXdJaYtXMcdNLpl/Qvc3P2cB3s6lOV51nqsFq4ag==}
	undici@5.29.0:
	resolution: {integrity: sha512-raqeBD6NQK4SkWhQzeYKd1KmIG6dllBOTt55Rmkt4HtI9mwdWtJljnrXjAFUBLTSN67HWrOIZ3EPF4kjUw80Bg==}
	engines: {node: '>=14.0'}
	undici@5.29.0:

[amazon-q-developer]

✅ I finished the code review, and left comments with the issues I found. I will now generate code fix suggestions.