Skip to content

Comments

⬆️(dependencies) update js dependencies#1853

Open
renovate[bot] wants to merge 5 commits intomainfrom
renovate/js-dependencies
Open

⬆️(dependencies) update js dependencies#1853
renovate[bot] wants to merge 5 commits intomainfrom
renovate/js-dependencies

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Feb 2, 2026
edited
Loading

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package Change Age Confidence
@fontsource-variable/material-symbols-outlined (source) 5.2.315.2.35 age confidence
@​gouvfr-lasuite/cunningham-react 4.1.04.2.0 age confidence
@​gouvfr-lasuite/ui-kit 0.18.70.19.6 age confidence
@hocuspocus/provider (source) 3.4.33.4.4 age confidence
@hocuspocus/server (source) 3.4.33.4.4 age confidence
@mantine/core (source) 8.3.128.3.14 age confidence
@mantine/hooks (source) 8.3.128.3.14 age confidence
@playwright/test (source) 1.57.01.58.2 age confidence
@react-pdf/renderer (source) 4.3.14.3.2 age confidence
@sentry/nextjs (source) 10.34.010.38.0 age confidence
@sentry/node (source) 10.34.010.38.0 age confidence
@sentry/profiling-node (source) 10.34.010.38.0 age confidence
@tanstack/eslint-plugin-query (source) 5.91.25.91.4 age confidence
@tanstack/react-query (source) 5.90.185.90.21 age confidence
@tanstack/react-query-devtools (source) 5.91.25.91.3 age confidence
@testing-library/react 16.3.116.3.2 age confidence
@tiptap/extensions (source) 3.14.03.19.0 age confidence
@types/node (source) 24.10.924.10.13 age confidence
@types/react (source) 19.2.819.2.14 age confidence
@typescript-eslint/eslint-plugin (source) 8.53.08.55.0 age confidence
@typescript-eslint/parser (source) 8.53.08.55.0 age confidence
@vitejs/plugin-react (source) 5.1.25.1.4 age confidence
@vitest/eslint-plugin 1.6.61.6.9 age confidence
cors 2.8.52.8.6 age confidence
dotenv 17.2.317.3.1 age confidence
eslint (source) 9.39.210.0.0 age confidence
eslint-plugin-jest 29.12.129.15.0 age confidence
eslint-plugin-playwright 2.5.02.5.1 age confidence
i18next (source) 25.7.425.8.8 age confidence
i18next-browser-languagedetector 8.2.08.2.1 age confidence
jsdom 27.4.028.1.0 age confidence
posthog-js (source) 1.325.01.347.2 age confidence
prettier (source) 3.8.03.8.1 age confidence
prosemirror-view 1.41.41.41.6 age confidence
react (source) 19.2.319.2.4 age confidence
react-aria-components 1.14.01.15.1 age confidence
react-dom (source) 19.2.319.2.4 age confidence
react-dropzone 14.3.815.0.0 age confidence
react-i18next 16.5.316.5.4 age confidence
styled-components (source) 6.3.86.3.9 age confidence
stylelint (source) 16.26.117.3.0 age confidence
stylelint-config-standard 39.0.140.0.0 age confidence
vite-tsconfig-paths 6.0.46.1.1 age confidence
vitest (source) 4.0.174.0.18 age confidence
webpack 5.104.15.105.2 age confidence
zustand 5.0.105.0.11 age confidence

Release Notes

fontsource/font-files (@​fontsource-variable/material-symbols-outlined)

v5.2.35

Compare Source

v5.2.34

Compare Source

v5.2.33

Compare Source

v5.2.32

Compare Source

ueberdosis/hocuspocus (@​hocuspocus/provider)

v3.4.4

Compare Source

Bug Fixes
mantinedev/mantine (@​mantine/core)

v8.3.14

Compare Source

What's Changed
  • [@mantine/core] Switch: Fix checkbox not being recognized by Playwright (#​8370, #​8645)
  • [@mantine/core] MultiSelect: Fix click on chevron not opening dropdown when clearable is enabled (#​8641)
  • [@mantine/modals] Fix types of context modals inferred incorrectly (#​8625)
  • [@mantine/core] MultiSelect: Fix clear button overlapping with pills (#​8634)
New Contributors

Full Changelog: mantinedev/mantine@8.3.13...8.3.14

v8.3.13

Compare Source

What's Changed
  • [@mantine/core] Add openOnFocus prop to Combobox based components (#​5893, #​8623)
  • [@mantine/dates] TimePicker: Fix clearing in uncontrolled mode not updating to empty value (#​8622)
  • [@mantine/core] ScrollArea: Fix Shift + wheel scroll not working correctly on Windows (#​8619)
  • [@mantine/core] Add selectFirstOptionOnDropdownOpen to Combobox based components (#​8597)
  • [@mantine/core] ScrollArea: Fix onBottomReached not being called when used in zoomed-in viewports (#​8616)
  • [@mantine/core] Popover: Fix aria-controls attribute being set on the target element when the dropdown is not mounted (#​8595)
  • [@mantine/core] RangeSlider: Fix incorrect Styles API name (#​8601)
  • [@mantine/core] ScrollArea: Fix overscrollBehavior prop not working in ScrollArea.Autosize component (#​8611)
New Contributors

Full Changelog: mantinedev/mantine@8.3.12...8.3.13

microsoft/playwright (@​playwright/test)

v1.58.2

Compare Source

v1.58.1

Compare Source

Highlights

#​39036 fix(msedge): fix local network permissions
#​39037 chore: update cft download location
#​38995 chore(webkit): disable frame sessions on fronzen builds

Browser Versions
  • Chromium 145.0.7632.6
  • Mozilla Firefox 146.0.1
  • WebKit 26.0

v1.58.0

Compare Source

diegomura/react-pdf (@​react-pdf/renderer)

v4.3.2

Compare Source

Patch Changes
getsentry/sentry-javascript (@​sentry/nextjs)

v10.38.0

Compare Source

Important Changes

  • feat(tanstackstart-react): Auto-instrument request middleware (#​18989)

    The sentryTanstackStart Vite plugin now automatically instruments middleware arrays in createFileRoute(). This captures performance data without requiring manual wrapping with wrapMiddlewaresWithSentry().

Other Changes
  • feat: Use v4.8.0 bundler plugins (#​18993)
  • feat(browser): Add logs.metrics bundle (#​19020)
  • feat(browser): Add replay.logs.metrics bundle (#​19021)
  • feat(browser): Add tracing.replay.logs.metrics bundle (#​19039)
  • feat(deps): bump import-in-the-middle from 2.0.1 to 2.0.6 (#​19042)
  • feat(node): Add AI manual instrumentation exports to Node (#​19063)
  • feat(wasm): initialised sentryWasmImages for webworkers (#​18812)
  • fix(core): Classify custom AggregateErrors as exception groups (#​19053)
  • fix(nextjs): Turn off debugID injection if sourcemaps are explicitly disabled (#​19010)
  • fix(react): Avoid String(key) to fix Symbol conversion error (#​18982)
  • fix(react): Prevent lazy route handlers from updating wrong navigation span (#​18898)
Internal Changes - feat(deps-dev): bump @​types/rsvp from 4.0.4 to 4.0.9 ([#​19038](https://redirect.github.com/getsentry/sentry-javascript/pull/19038)) - ci(build): Run full test suite on new bundle with logs+metrics ([#​19065](https://redirect.github.com/getsentry/sentry-javascript/pull/19065)) - ci(deps): bump actions/create-github-app-token from 1 to 2 ([#​19028](https://redirect.github.com/getsentry/sentry-javascript/pull/19028)) - ci(deps): bump peter-evans/create-pull-request from 8.0.0 to 8.1.0 ([#​19029](https://redirect.github.com/getsentry/sentry-javascript/pull/19029)) - chore: Add external contributor to CHANGELOG.md ([#​19005](https://redirect.github.com/getsentry/sentry-javascript/pull/19005)) - chore(aws-serverless): Fix local cache issues ([#​19081](https://redirect.github.com/getsentry/sentry-javascript/pull/19081)) - chore(dependabot): Allow all packages to update ([#​19024](https://redirect.github.com/getsentry/sentry-javascript/pull/19024)) - chore(dependabot): Update ignore patterns and add more groups ([#​19037](https://redirect.github.com/getsentry/sentry-javascript/pull/19037)) - chore(dependabot): Update ignore patterns and add more groups ([#​19043](https://redirect.github.com/getsentry/sentry-javascript/pull/19043)) - chore(deps-dev): bump @​edge-runtime/types from 3.0.1 to 4.0.0 ([#​19032](https://redirect.github.com/getsentry/sentry-javascript/pull/19032)) - chore(deps-dev): bump @​vercel/nft from 0.29.4 to 1.3.0 ([#​19030](https://redirect.github.com/getsentry/sentry-javascript/pull/19030)) - chore(deps): bump @​actions/artifact from 2.1.11 to 5.0.3 ([#​19031](https://redirect.github.com/getsentry/sentry-javascript/pull/19031)) - chore(deps): bump hono from 4.11.4 to 4.11.7 in /dev-packages/e2e-tests/test-applications/cloudflare-hono ([#​19009](https://redirect.github.com/getsentry/sentry-javascript/pull/19009)) - chore(deps): bump next from 16.0.9 to 16.1.5 in /dev-packages/e2e-tests/test-applications/nextjs-16-cacheComponents ([#​19012](https://redirect.github.com/getsentry/sentry-javascript/pull/19012)) - chore(deps): Bump trpc v11 dependency in e2e test ([#​19061](https://redirect.github.com/getsentry/sentry-javascript/pull/19061)) - chore(deps): Bump wrangler to 4.61.0 ([#​19023](https://redirect.github.com/getsentry/sentry-javascript/pull/19023)) - chore(deps): Upgrade @​remix-run deps to 2.17.4 ([#​19040](https://redirect.github.com/getsentry/sentry-javascript/pull/19040)) - chore(deps): Upgrade `next` versions 15 and 16 ([#​19057](https://redirect.github.com/getsentry/sentry-javascript/pull/19057)) - chore(deps): Upgrade Lerna to v8 ([#​19050](https://redirect.github.com/getsentry/sentry-javascript/pull/19050)) - chore(deps): Upgrade next to 14.2.35 ([#​19055](https://redirect.github.com/getsentry/sentry-javascript/pull/19055)) - chore(deps): Upgrade react-router, @​react-router/node, @​react-router/serve, @​react-router/dev to 7.13.0 ([#​19026](https://redirect.github.com/getsentry/sentry-javascript/pull/19026)) - chore(llm): Add claude skill + cursor command for adding new cdn bundles ([#​19048](https://redirect.github.com/getsentry/sentry-javascript/pull/19048)) - chore(llm): Ignore local Claude settings ([#​18893](https://redirect.github.com/getsentry/sentry-javascript/pull/18893)) - chore(react): Update react-router-5 dev dependency to another than 5.0.0 ([#​19047](https://redirect.github.com/getsentry/sentry-javascript/pull/19047)) - chore(release): Add generate-changelog script ([#​18999](https://redirect.github.com/getsentry/sentry-javascript/pull/18999)) - chore(remix): Upgrade @​remix-run/router to ^1.23.2 ([#​19045](https://redirect.github.com/getsentry/sentry-javascript/pull/19045)) - chore(solidstart): Bump peer dependencies of @​solidjs/start ([#​19051](https://redirect.github.com/getsentry/sentry-javascript/pull/19051)) - chore(solidstart): Upgrade Vinxi to update h3 peer dependency ([#​19018](https://redirect.github.com/getsentry/sentry-javascript/pull/19018)) - chore(tests): Reject messages from unknown origins in integration tests ([#​19016](https://redirect.github.com/getsentry/sentry-javascript/pull/19016))

Work in this release was contributed by @​harshit078. Thank you for your contribution!

v10.37.0

Compare Source

Important Changes

  • feat(core): Introduces a new Sentry.setConversationId() API to track multi turn AI conversations across API calls. (#​18909)

    You can now set a conversation ID that will be automatically applied to spans within that scope. This allows you to link traces from the same conversation together.

    import * as Sentry from '@​sentry/node';

// Set conversation ID for all subsequent spans
Sentry.setConversationId('conv_abc123');

// All AI spans will now include the gen_ai.conversation.id attribute
await openai.chat.completions.create({...});

    This is particularly useful for tracking multiple AI API calls that are part of the same conversation, allowing you to analyze entire conversation flows in Sentry.
    The conversation ID is stored on the isolation scope and automatically applied to spans via the new conversationIdIntegration.

  • feat(tanstackstart-react): Auto-instrument global middleware in sentryTanstackStart Vite plugin (#​18844)

    The sentryTanstackStart Vite plugin now automatically instruments requestMiddleware and functionMiddleware arrays in createStart(). This captures performance data without requiring manual wrapping.

    Auto-instrumentation is enabled by default. To disable it:

    // vite.config.ts
sentryTanstackStart({
  authToken: process.env.SENTRY_AUTH_TOKEN,
  org: 'your-org',
  project: 'your-project',
  autoInstrumentMiddleware: false,
});
Other Changes
  • feat(core): simplify truncation logic to only keep the newest message (#​18906)
  • feat(core): Support new client discard reason invalid (#​18901)
  • feat(deps): Bump OpenTelemetry instrumentations (#​18934)
  • feat(nextjs): Update default ignore list for sourcemaps (#​18938)
  • feat(node): pass prisma instrumentation options through (#​18900)
  • feat(nuxt): Don't run source maps related code on Nuxt "prepare" (#​18936)
  • feat(replay): Update client report discard reason for invalid sessions (#​18796)
  • feat(winston): Add customLevelMap for winston transport (#​18922)
  • feat(react-router): Add support for React Router instrumentation API (#​18580)
  • fix(astro): Do not show warnings for valid options (#​18947)
  • fix(core): Report well known values in gen_ai.operation.name attribute (#​18925)
  • fix(node-core): ignore vercel AbortError by default on unhandled rejection (#​18973)
  • fix(nuxt): include sentry.config.server.ts in nuxt app types (#​18971)
  • fix(profiling): Add platform to envelope item header (#​18954)
  • fix(react): Defer React Router span finalization until lazy routes load (#​18881)
  • ref(core): rename gen_ai.input.messages.original_length to sentry.sdk_meta.gen_ai.input.messages.original_length (#​18970)
  • ref(core): rename gen_ai.request.messages to gen_ai.input.messages (#​18944)
  • ref(core): Set system message as separate attribute (#​18978)
  • deps: Bump version of sentry-bundler-plugins (#​18972)
Internal Changes
  • chore(e2e): Add e2e claude skill (#​18957)
  • chore(e2e): Add Makefile to make running specific e2e test apps easier (#​18953)
  • chore(e2e): Modify e2e skill to also account for untracked files (#​18959)
  • ref(tests): use constants in ai integration tests and add missing ones (#​18945)
  • test(nextjs): Added nextjs CF workers test app (#​18928)
  • test(prisma): Move to yarn prisma (#​18975)

Work in this release was contributed by @​sebws, @​harshit078, and @​fedetorre. Thank you for your contributions!

v10.36.0

Compare Source

v10.35.0

Compare Source

Important Changes

  • feat(tanstackstart-react): Add sentryTanstackStart vite plugin to manage automatic source map uploads (#​18712)

    You can now configure source maps upload for TanStack Start using the sentryTanstackStart Vite plugin:

    // vite.config.ts
import { defineConfig } from 'vite';
import { sentryTanstackStart } from '@​sentry/tanstackstart-react';
import { tanstackStart } from '@​tanstack/react-start/plugin/vite';

export default defineConfig({
  plugins: [
    sentryTanstackStart({
      authToken: process.env.SENTRY_AUTH_TOKEN,
      org: 'your-org',
      project: 'your-project',
    }),
    tanstackStart(),
  ],
});
Other Changes
  • feat(browser): Add CDN bundle for tracing.replay.feedback.logs.metrics (#​18785)
  • feat(browser): Add shim package for logs (#​18831)
  • feat(cloudflare): Automatically set the release id when CF_VERSION_METADATA is enabled (#​18855)
  • feat(core): Add ignored client report event drop reason (#​18815)
  • feat(logs): Add Log exports to browser and node packages (#​18857)
  • feat(node-core,bun): Export processSessionIntegration from node-core and add it to bun (#​18852)
  • fix(core): Find the correct IP address regardless their case (#​18880)
  • fix(core): Check for AI operation id to detect a vercelai span (#​18823)
  • fix(ember): Use ES5 syntax in inline vendor scripts (#​18858)
  • fix(fetch): Shallow-clone fetch options to prevent mutation (#​18867)
Internal Changes
  • chore(ci): Use javascript-sdk-gitflow app instead of personal token (#​18829)
  • chore(deps): Bump @sveltejs/kit devDependency to 2.49.5 (#​18848)
  • chore(deps): Bump bundler plugins to ^4.6.2 (#​18822)
  • chore(deps): bump hono from 4.10.3 to 4.11.4 in /dev-packages/e2e-tests/test-applications/cloudflare-hono (#​18806)
  • chore(test): Bump svelte dependencies (#​18850)
  • chore(core): Comment out Error tests in langchain (#​18837)
  • meta(changelog): Fix entry for tanstack start vite plugin (#​18883)
  • test(e2e): Add testing app for User Feedback (#​18877)
  • test(fastify): Verify if upstream error is fixed and won't regress (#​18838)

Work in this release was contributed by @​rreckonerr. Thank you for your contribution!

TanStack/query (@​tanstack/eslint-plugin-query)

v5.91.4

Compare Source

Patch Changes
  • fix(eslint-plugin-query): declare typescript as optional peer dependency (#​10007)

v5.91.3

Compare Source

Patch Changes
  • exhaustive-deps rule fixed for vue files (#​10011)
TanStack/query (@​tanstack/react-query)

v5.90.21

Compare Source

Patch Changes
  • refactor(react-query/useQueries): remove unreachable 'willFetch' branch in suspense promise collection (#​10082)

v5.90.20

Compare Source

Patch Changes

v5.90.19

Compare Source

Patch Changes
TanStack/query (@​tanstack/react-query-devtools)

v5.91.3

Compare Source

Patch Changes
testing-library/react-testing-library (@​testing-library/react)

v16.3.2

Compare Source

ueberdosis/tiptap (@​tiptap/extensions)

v3.19.0

Compare Source

@​tiptap/extension-link
Patch Changes
  • Add title attribute to Link extension. The title can now be set via setLink and toggleLink commands and is rendered as an HTML title attribute.
  • Add title attribute support for markdown rendering. Links with titles are now serialized to markdown format [text](url "title").
@​tiptap/react
Minor Changes
  • Moved BubbleMenu and FloatingMenu to separate @tiptap/react/menus entrypoint to keep floating-ui optional
  • Simplified Tiptap component API with guaranteed non-null editor instance from useTiptap hook

v3.18.0

Compare Source

@​tiptap/extension-bubble-menu
Patch Changes
  • Fix BubbleMenu and FloatingMenu props not updating after initialization
@​tiptap/extension-floating-menu
Patch Changes
  • Fix BubbleMenu and FloatingMenu props not updating after initialization
@​tiptap/react
Minor Changes

  • Introduce a new, optional React integration that provides a declarative <Tiptap /> component for setting up editors in React apps.

    Summary

    • Add a new, ergonomic way to initialize and use Tiptap editors in React via <Tiptap /> components. This is an additive change and does not remove or change existing APIs.

    Why this change

    • Improves ergonomics for React users by offering a component-first API that pairs well with React patterns (hooks, JSX composition and props-driven configuration).

    Migration and usage

    • The old programmatic setup remains supported for this major version — nothing breaks. We encourage consumers to try the new <Tiptap /> component and migrate when convenient.

    Example

    import { Tiptap, useEditor } from '@&#8203;tiptap/react'

function MyEditor() {
  const editor = useEditor({ extensions: [StarterKit], content: '<h1>Hello from Tiptap</h1>' })

  return (
    <Tiptap instance={editor}>
      <Tiptap.Content />
      <Tiptap.BubbleMenu>My Bubble Menu</Tiptap.BubbleMenu>
      <Tiptap.FloatingMenu>My Floating Menu</Tiptap.FloatingMenu>
      <MenuBar /> {/* MenuBar can use the new `useTiptap` hook to read the editor instance from context */}
    </Tiptap>
  )
}

    Deprecation plan

    • The old imperative setup will remain fully backward-compatible for this major release. We plan to deprecate (and remove) the legacy setup in the next major version — a deprecation notice and migration guide will be published ahead of that change.
Patch Changes
  • Fix BubbleMenu and FloatingMenu props not updating after initialization
  • Fixed extension storage not updating in React and Vue node views
@​tiptap/vue-3
Patch Changes
  • Fixed extension storage not updating in React and Vue node views
@​tiptap/markdown
Patch Changes
  • Upgrade marked.js from v15.0.12 to v17.0.1. Note that **)** requires whitespace when adjacent to alphanumeric text per CommonMark specification.
@​tiptap/extensions
Patch Changes
  • Added a new dataAttribute to the extension option to control which attribute name will be used for the placeholder label.

v3.17.1

Compare Source

@​tiptap/extension-paragraph
Patch Changes
  • Fixed markdown serialization doubling newlines and parsing collapsing multiple blank lines
@​tiptap/markdown
Patch Changes
  • Fixed markdown serialization doubling newlines and parsing collapsing multiple blank lines
  • Fixed markdown HTML parsing when window object is unavailable in server-side environments
  • Fixed ordered list numbering when list has a non-default start value
@​tiptap/vue-3
Patch Changes
  • Fixed IME input (Chinese, Japanese, Korean) in Vue 3 mark views by preventing DOM element destruction during composition events
@​tiptap/extension-collaboration-caret
Patch Changes
  • Fixed CollaborationCaret crash with "Cannot read properties of undefined (reading 'doc')" error by updating to @​tiptap/y-tiptap@​3.0.2, which includes a guard against undefined state during editor initialization. This issue affected editors initialized with HTML content, particularly when using tables.
@​tiptap/extension-collaboration
Patch Changes
  • Fixed CollaborationCaret crash with "Cannot read properties of undefined (reading 'doc')" error by updating to @​tiptap/y-tiptap@​3.0.2, which includes a guard against undefined state during editor initialization. This issue affected editors initialized with HTML content, particularly when using tables.
@​tiptap/extension-drag-handle
Patch Changes
  • Fixed CollaborationCaret crash with "Cannot read properties of undefined (reading 'doc')" error by updating to @​tiptap/y-tiptap@​3.0.2, which includes a guard against undefined state during editor initialization. This issue affected editors initialized with HTML content, particularly when using tables.
@​tiptap/html
Patch Changes
  • Fixed server-side HTML parsing crash when content contains link, script, or style tags with resource references.
  • Fixed server exports failing in Node.js test environments with jsdom/happy-dom
@​tiptap/extension-bubble-menu
Patch Changes
  • Fixed bubble and floating menus to properly handle hide middleware data, hiding menus when reference element is scrolled out of view
@​tiptap/extension-floating-menu
Patch Changes
  • Fixed bubble and floating menus to properly handle hide middleware data, hiding menus when reference element is scrolled out of view
@​tiptap/core
Patch Changes
  • Fixed $nodes() method to correctly return inline nodes (like text, mention, etc.) by fixing the children getter

Configuration

📅 Schedule: Branch creation - "before 7am on monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added automated Pull request created automatically dependencies Pull requests that update a dependency file noChangeLog labels Feb 2, 2026
@socket-security
Copy link

socket-security bot commented Feb 2, 2026
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Addedeslint-config-next@​15.5.10991006598100
Addednext@​15.5.106899919770
Added@​gouvfr-lasuite/​cunningham-react@​4.2.0681007491100
Added@​blocknote/​code-block@​0.47.084100699770
Addedconvert-stream@​1.0.2691007575100
Added@​blocknote/​server-util@​0.47.099100699770
Added@​types/​pngjs@​6.0.51001007080100
Added@​types/​express@​5.0.61001007185100
Added@​tanstack/​react-query-devtools@​5.91.31001007197100
Added@​typescript-eslint/​parser@​8.56.01001007198100
Added@​blocknote/​xl-pdf-exporter@​0.47.093100719770
Added@​types/​supertest@​6.0.31001007181100
Added@​emoji-mart/​react@​1.1.11001007179100
Added@​blocknote/​xl-multi-column@​0.47.092100729770
Added@​blocknote/​mantine@​0.47.099100729570
Addedworkbox-webpack-plugin@​7.1.01001007386100
Added@​blocknote/​xl-docx-exporter@​0.47.092100739770
Added@​gouvfr-lasuite/​ui-kit@​0.19.67310010099100
Added@​next/​eslint-plugin-next@​15.5.101001007399100
Added@​types/​pdf-parse@​1.1.51001007380100
Added@​blocknote/​xl-odt-exporter@​0.47.080100749770
Added@​emoji-mart/​data@​1.2.11001007480100
Added@​hocuspocus/​provider@​3.4.4991007498100
Added@​tanstack/​eslint-plugin-query@​5.91.41001007497100
Added@​types/​react-dom@​19.2.31001007587100
Addedlodash@​4.17.23761008786100
Updated@​typescript-eslint/​utils@​8.53.0 ⏵ 8.56.0100 +110077 +198100
Added@​types/​luxon@​3.7.11001007783100
Added@​tiptap/​extensions@​3.19.01001007898100
Addedcrisp-sdk-web@​1.0.271001007990100
Added@​hocuspocus/​server@​3.4.4991007999100
Addedvitest@​4.0.18961007998100
Added@​types/​react@​19.2.141001007995100
See 68 more rows in the dashboard

View full report

@github-actions
Copy link

github-actions bot commented Feb 2, 2026
edited
Loading

Size Change: +12.8 kB (+0.3%)

Total Size: 4.22 MB

Filename Size Change
apps/impress/out/_next/static/9127b955/_buildManifest.js 892 B +892 B (new file) 🆕
apps/impress/out/_next/static/a9ecb037/_buildManifest.js 0 B -893 B (removed) 🏆
apps/impress/out/_next/static/chunks/6605.js 781 kB +1.43 kB (+0.18%)
apps/impress/out/_next/static/chunks/06873998.js 10.4 kB +3.01 kB (+40.84%) 🚨
apps/impress/out/_next/static/chunks/9246647c.js 38.9 kB +3.82 kB (+10.91%) ⚠️
apps/impress/out/_next/static/chunks/pages/_app.js 603 kB +2.33 kB (+0.39%)
apps/impress/out/_next/static/css/baacd4c537066d47.css 0 B -34.1 kB (removed) 🏆
apps/impress/out/_next/static/css/c5a0e34a699c5638.css 0 B -45.6 kB (removed) 🏆
apps/impress/out/_next/static/css/e6cd5fe945d3ea32.css 34.1 kB +34.1 kB (new file) 🆕
apps/impress/out/_next/static/css/fc6cbe9d4c1d812b.css 47.4 kB +47.4 kB (new file) 🆕

compressed-size-action

@AntoLC AntoLC self-assigned this Feb 3, 2026
@renovate renovate bot force-pushed the renovate/js-dependencies branch from e96bfe5 to 5d85f3a Compare February 9, 2026 01:07
@renovate renovate bot force-pushed the renovate/js-dependencies branch from 5d85f3a to 1a9e2d4 Compare February 16, 2026 01:52
@socket-security
Copy link

socket-security bot commented Feb 16, 2026
edited
Loading

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report

@renovate renovate bot force-pushed the renovate/js-dependencies branch 2 times, most recently from 9b5e03d to 1d105c4 Compare February 23, 2026 01:14
@AntoLC AntoLC force-pushed the renovate/js-dependencies branch from 1d105c4 to abc4073 Compare February 23, 2026 10:45
@renovate
Copy link
Contributor Author

renovate bot commented Feb 23, 2026

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

@AntoLC AntoLC mentioned this pull request Feb 23, 2026
Closed
@AntoLC AntoLC self-requested a review February 23, 2026 10:55
@AntoLC AntoLC force-pushed the renovate/js-dependencies branch 6 times, most recently from 650a279 to b62e076 Compare February 23, 2026 16:23
renovate bot and others added 5 commits February 23, 2026 17:42
@renovate @AntoLC
⬆️(dependencies) update js dependencies
d766175
@AntoLC
⬆️(frontend) update dependencies to fit eslint v10
239d595 
Update dependencies and code to fit eslint v10.
@AntoLC
🔒️(secu) fix CVE-2025-64756 with glob
b0f131c 
We get a warning about a vulnerability with "glob".
We upgrade to 10.5.0 to fix the issue.
@AntoLC
🔒️(secu) fix CVE-2026-2327 with markdown-it
feb669a 
We get a warning about a vulnerability with "markdown-it".
We upgrade to 14.1.1 to fix the issue.
@AntoLC
🔒️(secu) fix CVE-2026-26996 with minimatch
2f6afe9 
We get a warning about a vulnerability in
minimatch 3.1.2.
We ugrade to 10.2.2 to fix the issue.
@AntoLC AntoLC force-pushed the renovate/js-dependencies branch from b62e076 to 2f6afe9 Compare February 23, 2026 16:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AntoLC AntoLC AntoLC approved these changes

Assignees

@AntoLC AntoLC

Labels

automated Pull request created automatically dependencies Pull requests that update a dependency file noChangeLog security

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@AntoLC