chore(deps): bump the minor-and-patch group across 1 directory with 3 updates

[dependabot]

Bumps the minor-and-patch group with 3 updates in the / directory: @anthropic-ai/sdk, @daytonaio/sdk and weave.

Updates @anthropic-ai/sdk from 0.72.1 to 0.80.0

Release notes

Sourced from @​anthropic-ai/sdk's releases.

sdk: v0.80.0

0.80.0 (2026-03-18)

Full Changelog: sdk-v0.79.0...sdk-v0.80.0

Features

• api: manual updates (dd12f1a)
• api: manual updates (9c0a077)

Chores

• internal: tweak CI branches (4a5819e)

sdk: v0.79.0

0.79.0 (2026-03-16)

Full Changelog: sdk-v0.78.0...sdk-v0.79.0

Features

• add support for filesystem memory tools (#599) (1064199)
• api: chore(config): clean up model enum list (#31) (07727a6)
• api: GA thinking-display-setting (4dc8df4)
• tests: update mock server (e5c3be9)

Bug Fixes

• docs/contributing: correct pnpm link command (16bf66c)
• internal: skip tests that depend on mock server (07417e5)
• zod: use v4 import path for Zod ^3.25 compatibility (#925) (c6c0ac8)

Chores

• client: remove unused import (3827ab5)
• internal: codegen related update (2c1fc10)
• internal: improve import alias names (5b9615b)
• internal: move stringifyQuery implementation to internal function (16239f3)
• internal: update dependencies to address dependabot vulnerabilities (6fdea5e)
• mcp-server: improve instructions (66e5363)
• remove accidentally committed file (#929) (0989113)
• tests: unskip tests that are now supported in steady (616a98a)

Documentation

• streamline and standardize docs (#687) (dbdc5d3)

... (truncated)

Changelog

Sourced from @​anthropic-ai/sdk's changelog.

0.80.0 (2026-03-18)

Full Changelog: sdk-v0.79.0...sdk-v0.80.0

Features

• api: manual updates (dd12f1a)
• api: manual updates (9c0a077)

Chores

• internal: tweak CI branches (4a5819e)

0.79.0 (2026-03-16)

Full Changelog: sdk-v0.78.0...sdk-v0.79.0

Features

• add support for filesystem memory tools (#599) (1064199)
• api: chore(config): clean up model enum list (#31) (07727a6)
• api: GA thinking-display-setting (4dc8df4)
• tests: update mock server (e5c3be9)

Bug Fixes

• docs/contributing: correct pnpm link command (16bf66c)
• internal: skip tests that depend on mock server (07417e5)
• zod: use v4 import path for Zod ^3.25 compatibility (#925) (c6c0ac8)

Chores

• client: remove unused import (3827ab5)
• internal: codegen related update (2c1fc10)
• internal: improve import alias names (5b9615b)
• internal: move stringifyQuery implementation to internal function (16239f3)
• internal: update dependencies to address dependabot vulnerabilities (6fdea5e)
• mcp-server: improve instructions (66e5363)
• remove accidentally committed file (#929) (0989113)
• tests: unskip tests that are now supported in steady (616a98a)

Documentation

• streamline and standardize docs (#687) (dbdc5d3)

0.78.0 (2026-02-19)

... (truncated)

Commits

• 0f8153b chore: release main
• e88d6a7 feat(api): manual updates
• d3eb7d1 feat(api): manual updates
• ffca9a1 chore(internal): tweak CI branches
• af66c80 chore: release main (#921)
• fdaa72b chore: release main (#917)
• e34f3a2 release: 0.77.0 (#916)
• 1d2868f chore: release main (#915)
• bcdf5b2 chore: release main
• 2a5d0ad fix(tests): fix erroneous speed tests (#699)
• Additional commits viewable in compare view

Updates @daytonaio/sdk from 0.152.1 to 0.153.0

Release notes

Sourced from @​daytonaio/sdk's releases.

v0.153.0

0.153.0 (2026-03-19)

🚀 Features

• api: cleanup stale build fails (#4046)
• api,runner: add docker healthcheck to runner (#3941)
• daemon: entrypoint as session (#3189)
• docs: add network allow/block list format and validation (#4124)
• ⚠️ docs,sdk: remove find one method (#4115)

🩹 Fixes

• api: remove state lock on job completion (#4148)
• cli: snapshot delete by name (#4129)

Chores

• sync go.sum for v0.152.1 (#4136)
• go work sync and poetry lock after dependabot updates (df5920f6f)
• deps: bump github.com/cloudflare/circl in /apps/daemon (715c2d907)
• deps: bump basic-ftp from 5.0.5 to 5.2.0 (6b7b4a93c)
• deps: bump rollup from 4.52.0 to 4.59.0 (d00b9bd28)
• deps: bump svgo from 2.8.0 to 2.8.2 (5b9a0ec36)
• deps: bump immutable from 5.1.3 to 5.1.5 (1f3d70c85)
• deps: bump github.com/docker/cli in /apps/runner (640494e3e)
• deps: bump tar from 7.5.7 to 7.5.11 (f46a33393)
• deps: bump devalue from 5.6.3 to 5.6.4 (76b05def8)
• deps: bump yauzl from 3.2.0 to 3.2.1 (11be0c767)
• deps: bump h3 from 1.15.5 to 1.15.8 (bbdf6e9a8)
• deps: bump socket.io-parser from 4.2.5 to 4.2.6 (9dd51f9d2)
• deps: bump google.golang.org/grpc in /libs/common-go (ae3cf8e26)
• deps-dev: bump nokogiri from 1.19.0 to 1.19.1 (fe6392236)
• deps-dev: bump tornado from 6.5.4 to 6.5.5 (b252af289)
• sdk-go: bump to v0.153.0 (#4150)

⚠️ Breaking Changes

• docs,sdk: The find_one/findOne method is being removed across all SDK languages (Python, TypeScript, Go, Ruby). All sandbox retrieval should be done via get using an ID or a name. If you're relying on label-based lookups, you'll need to switch to custom sandbox names before upgrading.

❤️ Thank You

• Fabjan Vučina
• Ivan Dagelic @​idagelic
• Juraj Štefanić @​stefanicjuraj
• Luka Brecic
• Toma Puljak @​Tpuljak

Commits

• 676fe87 chore(sdk-go): bump to v0.153.0 (#4150)
• 4bf3314 fix(api): remove state lock on job completion (#4148)
• 2feafee feat(docs): add network allow/block list format and validation (#4124)
• d7652d1 feat(api,runner): add docker healthcheck to runner (#3941)
• 3cdbf07 feat(docs,sdk): remove find one method (#4115)
• 78254d5 feat(api): cleanup stale build fails (#4046)
• df5920f chore: go work sync and poetry lock after dependabot updates
• ae3cf8e chore(deps): bump google.golang.org/grpc in /libs/common-go
• 9dd51f9 chore(deps): bump socket.io-parser from 4.2.5 to 4.2.6
• bbdf6e9 chore(deps): bump h3 from 1.15.5 to 1.15.8
• Additional commits viewable in compare view

Updates weave from 0.11.1 to 0.12.1

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

---

Summary by cubic

Update dependency versions to pull in recent fixes and features: @anthropic-ai/sdk 0.80.0, @daytonaio/sdk 0.153.0, and weave 0.12.1. Note: @daytonaio/sdk removes the findOne API; see migration.

• Dependencies

  • @anthropic-ai/sdk: 0.72.1 → 0.80.0
  • @daytonaio/sdk: 0.152.0 → 0.153.0
  • weave: 0.11.0 → 0.12.1

• Migration

  • For @daytonaio/sdk, replace any findOne/find_one calls with get by ID or by name.
  • If you relied on label-based lookups, define and use stable sandbox names before upgrading.

^{Written for commit 6c8fe05. Summary will update on new commits.}

[cubic-dev-ai]

No issues found across 1 file

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.