Skip to content

chore(deps)(deps): bump the backend-minor-patch group across 1 directory with 14 updates#426

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/backend/backend-minor-patch-0c9dd04163
Closed

chore(deps)(deps): bump the backend-minor-patch group across 1 directory with 14 updates#426
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/backend/backend-minor-patch-0c9dd04163

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor

Bumps the backend-minor-patch group with 14 updates in the /backend directory:

Package From To
@anthropic-ai/sdk 0.104.2 0.110.0
@aws-sdk/client-kms 3.1069.0 3.1079.0
@aws-sdk/client-s3 3.1069.0 3.1079.0
@aws-sdk/s3-request-presigner 3.1069.0 3.1079.0
@sentry/node 10.58.0 10.63.0
google-auth-library 10.7.0 10.9.0
nodemailer 9.0.1 9.0.3
posthog-node 5.37.1 5.39.4
sharp 0.35.1 0.35.3
stripe 22.2.1 22.3.0
svix 1.95.2 1.96.1
eslint 10.5.0 10.6.0
globals 17.6.0 17.7.0
vitest 4.1.9 4.1.10

Updates @anthropic-ai/sdk from 0.104.2 to 0.110.0

Release notes

Sourced from @​anthropic-ai/sdk's releases.

sdk: v0.110.0

0.110.0 (2026-07-02)

Full Changelog: sdk-v0.109.1...sdk-v0.110.0

Features

  • api: add agent-memory-2026-07-22 beta header (a470e10)

sdk: v0.109.1

0.109.1 (2026-07-01)

Full Changelog: sdk-v0.109.0...sdk-v0.109.1

Chores

  • api: remove some nonfunctional types from the SDKs (cc4dd4e)

sdk: v0.109.0

0.109.0 (2026-06-30)

Full Changelog: sdk-v0.108.0...sdk-v0.109.0

Features

  • api: add support for Managed Agents event delta streaming, agent overrides, reverse pagination, vault credential injection scoping, and agent and deployment webhook events (7f3211b)

sdk: v0.108.0

0.108.0 (2026-06-30)

Full Changelog: sdk-v0.107.0...sdk-v0.108.0

Features

  • api: add support for claude-sonnet-5 (4588db0)

Bug Fixes

  • agent-toolset: allow absolute paths that resolve inside workdir (#112) (e951fb2)

Chores

sdk: v0.107.0

0.107.0 (2026-06-29)

Full Changelog: sdk-v0.106.0...sdk-v0.107.0

... (truncated)

Changelog

Sourced from @​anthropic-ai/sdk's changelog.

0.110.0 (2026-07-02)

Full Changelog: sdk-v0.109.1...sdk-v0.110.0

Features

  • api: add agent-memory-2026-07-22 beta header (a470e10)

0.109.1 (2026-07-01)

Full Changelog: sdk-v0.109.0...sdk-v0.109.1

Chores

  • api: remove some nonfunctional types from the SDKs (cc4dd4e)

0.109.0 (2026-06-30)

Full Changelog: sdk-v0.108.0...sdk-v0.109.0

Features

  • api: add support for Managed Agents event delta streaming, agent overrides, reverse pagination, vault credential injection scoping, and agent and deployment webhook events (7f3211b)

0.108.0 (2026-06-30)

Full Changelog: sdk-v0.107.0...sdk-v0.108.0

Features

  • api: add support for claude-sonnet-5 (4588db0)

Bug Fixes

  • agent-toolset: allow absolute paths that resolve inside workdir (#112) (e951fb2)

Chores

0.107.0 (2026-06-29)

Full Changelog: sdk-v0.106.0...sdk-v0.107.0

Features

  • api: add support for 20260318 web fetch and support tools (d7057ea)

... (truncated)

Commits
  • 4f2eb80 chore: release main (#1107)
  • 96d1a99 chore: release main (#1106)
  • cb829c7 chore: release main
  • fd0341d feat(api): add support for Managed Agents event delta streaming, agent overri...
  • 90f767a codegen metadata
  • ed986cd chore: release main
  • d3ffad4 chore: format README.md (#176)
  • 6b46ad3 feat(api): add support for claude-sonnet-5
  • 8200ffa feat(vertex): bump google-auth-library to ^10.2.0 (SDK-91) (#30)
  • fa06d36 feat(bedrock): pass client logger to AWS credential provider chain (SDK-90) (...
  • Additional commits viewable in compare view

Updates @aws-sdk/client-kms from 3.1069.0 to 3.1079.0

Release notes

Sourced from @​aws-sdk/client-kms's releases.

v3.1079.0

3.1079.0(2026-07-02)

Chores
  • deps: bump @​aws/lambda-invoke-store to ^0.3.0 (#8140) (aeb7e071)
New Features
  • clients: update client endpoints as of 2026-07-02 (cc43668e)
  • client-config-service: AWS Config now supports tag-on-create for organization-managed Config rules and conformance packs through the PutOrganizationConfigRule and PutOrganizationConformancePack APIs. (2ca9232a)
  • client-odb: Updated model definitions for ODB service. (a9d3fd5e)
  • client-cognito-identity-provider: Add support for provisioned limit management, enabling customers to view and update their provisioned API rate limits for Amazon Cognito User Pools programmatically through the new GetProvisionedLimit and UpdateProvisionedLimit APIs. (160778dc)
  • client-outposts: Tighten Outpost site ContactPhoneNumber regex to perform phone number validation. (4e2b31db)
  • client-elementalinference: Adding new BDD representation of endpoint ruleset (dd21a6ec)
  • client-mediatailor: Added dual-stack (IPv4 and IPv6) endpoint fields to SSAI and Channel Assembly API responses. (63a258ce)
  • client-customer-profiles: Amazon Connect Customer Profiles adds support for diversityConfig to recommenderConfig which can be used for diversifying the recommendations. This release also includes model versioning support which helps customer to rollback trained models. (202ec32a)
Bug Fixes
Tests
  • client-kinesis: resolve e2e endpoint from client config (#8142) (4cfd7f42)

For list of updated packages, view updated-packages.md in assets-3.1079.0.zip

v3.1078.0

3.1078.0(2026-07-01)

Chores
  • codegen: sync for thinner command classes, endpoint parameter type fix (#8136) (c39b6765)
  • ci: allow AWS maintained packages in yarn age gate (#8139) (3bddc2a6)
  • deps-dev: bump yarn to 4.17.0 (#8137) (14dc3ae8)
Documentation Changes
  • client-cloud9: Since Amazon Linux 2 (AL2) will reach its end-of-life (EOL) and stop receiving security updates on June 30, 2026, Cloud9 will remove AL2 from AMI options in public API create-environment-ec2. (bbd7a342)
  • client-marketplace-metering: The usage reporting window for the BatchMeterUsage API has been extended from 6 hours to 24 hours. Sellers can now submit usage records for up to 24 hours after a metered event occurs. (980d5415)
New Features
  • clients: update client endpoints as of 2026-07-01 (0c0bc427)
  • client-opensearch: To create a Mustang domain via the AWS CLI, you must pass EngineMode OPTIMIZED (along with UseCase OBSERVABILITY or MIXED) without it, the domain defaults to a regular (GENERAL) domain. Also this release includes Insights Feedback API which user can use to provide feedback for Insight API. (8927c3ad)
  • client-ec2: Use declarative policies to enable VPC Encryption Controls across your organization or select accounts. Added AMD SEV-SNP support for EC2 Dedicated Hosts. Managed resource visibility settings control whether AWS-provisioned resources in your account appear in console views and API list operations. (6d82b78d)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-kms's changelog.

3.1079.0 (2026-07-02)

Note: Version bump only for package @​aws-sdk/client-kms

3.1078.0 (2026-07-01)

Note: Version bump only for package @​aws-sdk/client-kms

3.1077.0 (2026-06-30)

Note: Version bump only for package @​aws-sdk/client-kms

3.1076.0 (2026-06-29)

Note: Version bump only for package @​aws-sdk/client-kms

3.1075.0 (2026-06-23)

Note: Version bump only for package @​aws-sdk/client-kms

3.1074.0 (2026-06-22)

Note: Version bump only for package @​aws-sdk/client-kms

3.1073.0 (2026-06-19)

... (truncated)

Commits
  • 74dc940 Publish v3.1079.0
  • 661087f Publish v3.1078.0
  • c39b676 chore(codegen): sync for thinner command classes, endpoint parameter type fix...
  • 5c490b6 Publish v3.1077.0
  • c4b42a4 chore(codegen): sync for internal checksum impls and IMDSv2 region fallback (...
  • dfd62f6 Publish v3.1076.0
  • aa94fa0 chore(codegen): sync for checksum impls, hostLabel validation (#8127)
  • b6d6a75 chore(codegen): sync for CBOR serde performance and retry fixes (#8125)
  • 29ee199 Publish v3.1075.0
  • c48dfa0 Publish v3.1074.0
  • Additional commits viewable in compare view

Updates @aws-sdk/client-s3 from 3.1069.0 to 3.1079.0

Release notes

Sourced from @​aws-sdk/client-s3's releases.

v3.1079.0

3.1079.0(2026-07-02)

Chores
  • deps: bump @​aws/lambda-invoke-store to ^0.3.0 (#8140) (aeb7e071)
New Features
  • clients: update client endpoints as of 2026-07-02 (cc43668e)
  • client-config-service: AWS Config now supports tag-on-create for organization-managed Config rules and conformance packs through the PutOrganizationConfigRule and PutOrganizationConformancePack APIs. (2ca9232a)
  • client-odb: Updated model definitions for ODB service. (a9d3fd5e)
  • client-cognito-identity-provider: Add support for provisioned limit management, enabling customers to view and update their provisioned API rate limits for Amazon Cognito User Pools programmatically through the new GetProvisionedLimit and UpdateProvisionedLimit APIs. (160778dc)
  • client-outposts: Tighten Outpost site ContactPhoneNumber regex to perform phone number validation. (4e2b31db)
  • client-elementalinference: Adding new BDD representation of endpoint ruleset (dd21a6ec)
  • client-mediatailor: Added dual-stack (IPv4 and IPv6) endpoint fields to SSAI and Channel Assembly API responses. (63a258ce)
  • client-customer-profiles: Amazon Connect Customer Profiles adds support for diversityConfig to recommenderConfig which can be used for diversifying the recommendations. This release also includes model versioning support which helps customer to rollback trained models. (202ec32a)
Bug Fixes
Tests
  • client-kinesis: resolve e2e endpoint from client config (#8142) (4cfd7f42)

For list of updated packages, view updated-packages.md in assets-3.1079.0.zip

v3.1078.0

3.1078.0(2026-07-01)

Chores
  • codegen: sync for thinner command classes, endpoint parameter type fix (#8136) (c39b6765)
  • ci: allow AWS maintained packages in yarn age gate (#8139) (3bddc2a6)
  • deps-dev: bump yarn to 4.17.0 (#8137) (14dc3ae8)
Documentation Changes
  • client-cloud9: Since Amazon Linux 2 (AL2) will reach its end-of-life (EOL) and stop receiving security updates on June 30, 2026, Cloud9 will remove AL2 from AMI options in public API create-environment-ec2. (bbd7a342)
  • client-marketplace-metering: The usage reporting window for the BatchMeterUsage API has been extended from 6 hours to 24 hours. Sellers can now submit usage records for up to 24 hours after a metered event occurs. (980d5415)
New Features
  • clients: update client endpoints as of 2026-07-01 (0c0bc427)
  • client-opensearch: To create a Mustang domain via the AWS CLI, you must pass EngineMode OPTIMIZED (along with UseCase OBSERVABILITY or MIXED) without it, the domain defaults to a regular (GENERAL) domain. Also this release includes Insights Feedback API which user can use to provide feedback for Insight API. (8927c3ad)
  • client-ec2: Use declarative policies to enable VPC Encryption Controls across your organization or select accounts. Added AMD SEV-SNP support for EC2 Dedicated Hosts. Managed resource visibility settings control whether AWS-provisioned resources in your account appear in console views and API list operations. (6d82b78d)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-s3's changelog.

3.1079.0 (2026-07-02)

Note: Version bump only for package @​aws-sdk/client-s3

3.1078.0 (2026-07-01)

Note: Version bump only for package @​aws-sdk/client-s3

3.1077.0 (2026-06-30)

Note: Version bump only for package @​aws-sdk/client-s3

3.1076.0 (2026-06-29)

Note: Version bump only for package @​aws-sdk/client-s3

3.1075.0 (2026-06-23)

Note: Version bump only for package @​aws-sdk/client-s3

3.1074.0 (2026-06-22)

Note: Version bump only for package @​aws-sdk/client-s3

3.1073.0 (2026-06-19)

... (truncated)

Commits
  • 74dc940 Publish v3.1079.0
  • 661087f Publish v3.1078.0
  • c39b676 chore(codegen): sync for thinner command classes, endpoint parameter type fix...
  • 5c490b6 Publish v3.1077.0
  • c4b42a4 chore(codegen): sync for internal checksum impls and IMDSv2 region fallback (...
  • ea8faa0 chore(checksums): add crc32c and sha1 checksums (#8126)
  • dfd62f6 Publish v3.1076.0
  • aa94fa0 chore(codegen): sync for checksum impls, hostLabel validation (#8127)
  • b6d6a75 chore(codegen): sync for CBOR serde performance and retry fixes (#8125)
  • 29ee199 Publish v3.1075.0
  • Additional commits viewable in compare view

Updates @aws-sdk/s3-request-presigner from 3.1069.0 to 3.1079.0

Release notes

Sourced from @​aws-sdk/s3-request-presigner's releases.

v3.1079.0

3.1079.0(2026-07-02)

Chores
  • deps: bump @​aws/lambda-invoke-store to ^0.3.0 (#8140) (aeb7e071)
New Features
  • clients: update client endpoints as of 2026-07-02 (cc43668e)
  • client-config-service: AWS Config now supports tag-on-create for organization-managed Config rules and conformance packs through the PutOrganizationConfigRule and PutOrganizationConformancePack APIs. (2ca9232a)
  • client-odb: Updated model definitions for ODB service. (a9d3fd5e)
  • client-cognito-identity-provider: Add support for provisioned limit management, enabling customers to view and update their provisioned API rate limits for Amazon Cognito User Pools programmatically through the new GetProvisionedLimit and UpdateProvisionedLimit APIs. (160778dc)
  • client-outposts: Tighten Outpost site ContactPhoneNumber regex to perform phone number validation. (4e2b31db)
  • client-elementalinference: Adding new BDD representation of endpoint ruleset (dd21a6ec)
  • client-mediatailor: Added dual-stack (IPv4 and IPv6) endpoint fields to SSAI and Channel Assembly API responses. (63a258ce)
  • client-customer-profiles: Amazon Connect Customer Profiles adds support for diversityConfig to recommenderConfig which can be used for diversifying the recommendations. This release also includes model versioning support which helps customer to rollback trained models. (202ec32a)
Bug Fixes
Tests
  • client-kinesis: resolve e2e endpoint from client config (#8142) (4cfd7f42)

For list of updated packages, view updated-packages.md in assets-3.1079.0.zip

v3.1078.0

3.1078.0(2026-07-01)

Chores
  • codegen: sync for thinner command classes, endpoint parameter type fix (#8136) (c39b6765)
  • ci: allow AWS maintained packages in yarn age gate (#8139) (3bddc2a6)
  • deps-dev: bump yarn to 4.17.0 (#8137) (14dc3ae8)
Documentation Changes
  • client-cloud9: Since Amazon Linux 2 (AL2) will reach its end-of-life (EOL) and stop receiving security updates on June 30, 2026, Cloud9 will remove AL2 from AMI options in public API create-environment-ec2. (bbd7a342)
  • client-marketplace-metering: The usage reporting window for the BatchMeterUsage API has been extended from 6 hours to 24 hours. Sellers can now submit usage records for up to 24 hours after a metered event occurs. (980d5415)
New Features
  • clients: update client endpoints as of 2026-07-01 (0c0bc427)
  • client-opensearch: To create a Mustang domain via the AWS CLI, you must pass EngineMode OPTIMIZED (along with UseCase OBSERVABILITY or MIXED) without it, the domain defaults to a regular (GENERAL) domain. Also this release includes Insights Feedback API which user can use to provide feedback for Insight API. (8927c3ad)
  • client-ec2: Use declarative policies to enable VPC Encryption Controls across your organization or select accounts. Added AMD SEV-SNP support for EC2 Dedicated Hosts. Managed resource visibility settings control whether AWS-provisioned resources in your account appear in console views and API list operations. (6d82b78d)

... (truncated)

Changelog

Sourced from @​aws-sdk/s3-request-presigner's changelog.

3.1079.0 (2026-07-02)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1078.0 (2026-07-01)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1077.0 (2026-06-30)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1076.0 (2026-06-29)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1075.0 (2026-06-23)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1074.0 (2026-06-22)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1073.0 (2026-06-19)

... (truncated)

Commits
  • 74dc940 Publish v3.1079.0
  • 661087f Publish v3.1078.0
  • c39b676 chore(codegen): sync for thinner command classes, endpoint parameter type fix...
  • 5c490b6 Publish v3.1077.0
  • c4b42a4 chore(codegen): sync for internal checksum impls and IMDSv2 region fallback (...
  • dfd62f6 Publish v3.1076.0
  • aa94fa0 chore(codegen): sync for checksum impls, hostLabel validation (#8127)
  • b6d6a75 chore(codegen): sync for CBOR serde performance and retry fixes (#8125)
  • 29ee199 Publish v3.1075.0
  • c48dfa0 Publish v3.1074.0
  • Additional commits viewable in compare view

Updates @sentry/node from 10.58.0 to 10.63.0

Release notes

Sourced from @​sentry/node's releases.

10.63.0

  • feat(browser): Add url.full attribute to resource spans (#21846)
  • feat(core): Add extendIntegration method (#21759)
  • feat(core): Add isTracingSuppressed to the async context strategy (#21785)
  • feat(core): Pass normalizedRequest to the sampling context for root spans (#21833)
  • feat(node): Add lru-memoizer diagnostics-channel integration to experimentalUseDiagnosticsChannelInjection (#21786)
  • feat(node): Expose channel-based, streamlined fastifyIntegration (#21706)
  • fix(browser): Defer sending session envelope until browser is idle (#21844)
  • fix(core): Improve waiting for tracing channel bindings (#21815)
  • fix(core): Serialize streamed span status message to sentry.status.message attribute (#21811)
  • fix(nextjs): Don't inject trace meta tags when Cache Components is enabled (#21141)
  • fix(opentelemetry): Strip leading ? and # from inferred http.query and http.fragment (#21848)
  • fix(tanstackstart-react): Drop server transactions for tunnel route requests (#21769)
  • chore: Add external contributor to CHANGELOG.md (#21832)
  • chore: Hoist transitive imports for bundles (#21858)
  • chore: Mark http.query/http.fragment stripping for v11 url.query migration (#21852)
  • docs: Use Cloudflare nodejs_compat flag (#21659)
  • feat(server-utils): Add lru-memoizer diagnostics-channel integration (#21786)
  • feat(server-utils): Expose channel-based, streamlined fastifyIntegration (#21706)
  • feat(server-utils): Restore caller context for callback tracing channels (#21863)
  • ref(core): Move spanStreamingIntegration setup into ServerRuntimeClient (#21814)
  • ref(node): Infer orchestrion integration names (#21834)
  • ref(node): Move node-fetch instrumentation away from InstrumentBase (#21778)
  • ref(node): Streamline Prisma instrumentation (v6 and v7) (#21819)
  • ref(node): Streamline vendored mysql instrumentation (#21568)
  • ref(server-utils): Ensure ts3.8 has diagnostics channel shim (#21845)
  • ref(server-utils): Move mysql orchestrion integration onto bindTracingChannelToSpan (#21865)
  • ref(server-utils): Set error attributes on span and simplify error info extraction (#21822)
  • test: Introduce .unordered in node-integration-tests (#21697)
  • test(cloudflare): Align CF types and compat flags (#21835)
  • test(e2e/hono): Isolate request-data extraction tests onto a dedicated route (#21869)
  • test(node-integration): Harden knex mysql2 healthcheck to fix flaky test (#21868)
  • test(node-integration-tests): Fix flaky postgresjs basic transaction/error ordering (#21870)
  • test(node-integration-tests): Retry transient docker compose up failures (#21860)
  • test(nuxt): Test mysql instrumentation with orchestrion bundler plugin (#21782)

Work in this release was contributed by @​suzunn. Thank you for your contribution!

Bundle size 📦

Path Size
@​sentry/browser 26.97 KB
@​sentry/browser - with treeshaking flags 25.44 KB

... (truncated)

Changelog

Sourced from @​sentry/node's changelog.

10.63.0

  • feat(browser): Add url.full attribute to resource spans (#21846)
  • feat(core): Add extendIntegration method (#21759)
  • feat(core): Add isTracingSuppressed to the async context strategy (#21785)
  • feat(core): Pass normalizedRequest to the sampling context for root spans (#21833)
  • feat(node): Add lru-memoizer diagnostics-channel integration to experimentalUseDiagnosticsChannelInjection (#21786)
  • feat(node): Expose channel-based, streamlined fastifyIntegration (#21706)
  • fix(browser): Defer sending session envelope until browser is idle (#21844)
  • fix(core): Improve waiting for tracing channel bindings (#21815)
  • fix(core): Serialize streamed span status message to sentry.status.message attribute (#21811)
  • fix(nextjs): Don't inject trace meta tags when Cache Components is enabled (#21141)
  • fix(opentelemetry): Strip leading ? and # from inferred http.query and http.fragment (#21848)
  • fix(tanstackstart-react): Drop server transactions for tunnel route requests (#21769)
  • chore: Add external contributor to CHANGELOG.md (#21832)
  • chore: Hoist transitive imports for bundles (#21858)
  • chore: Mark http.query/http.fragment stripping for v11 url.query migration (#21852)
  • docs: Use Cloudflare nodejs_compat flag (#21659)
  • feat(server-utils): Add lru-memoizer diagnostics-channel integration (#21786)
  • feat(server-utils): Expose channel-based, streamlined fastifyIntegration (#21706)
  • feat(server-utils): Restore caller context for callback tracing channels (#21863)
  • ref(core): Move spanStreamingIntegration setup into ServerRuntimeClient (#21814)
  • ref(node): Infer orchestrion integration names (#21834)
  • ref(node): Move node-fetch instrumentation away from InstrumentBase (#21778)
  • ref(node): Streamline Prisma instrumentation (v6 and v7) (#21819)
  • ref(node): Streamline vendored mysql instrumentation (#21568)
  • ref(server-utils): Ensure ts3.8 has diagnostics channel shim (#21845)
  • ref(server-utils): Move mysql orchestrion integration onto bindTracingChannelToSpan (#21865)
  • ref(server-utils): Set error attributes on span and simplify error info extraction (#21822)
  • test: Introduce .unordered in node-integration-tests (#21697)
  • test(cloudflare): Align CF types and compat flags (#21835)
  • test(e2e/hono): Isolate request-data extraction tests onto a dedicated route (#21869)
  • test(node-integration): Harden knex mysql2 healthcheck to fix flaky test (#21868)
  • test(node-integration-tests): Fix flaky postgresjs basic transaction/error ordering (#21870)
  • test(node-integration-tests): Retry transient docker compose up failures (#21860)
  • test(nuxt): Test mysql instrumentation with orchestrion bundler plugin (#21782)

Work in this release was contributed by @​suzunn. Thank you for your contribution!

10.62.0

Important Changes

  • feat(server-runtimes): Add v7 support for vercelAiIntegration (#21613)

... (truncated)

Commits
  • 2362e9f release: 10.63.0
  • 5b51d5e Merge pull request #21874 from getsentry/prepare-release/10.63.0
  • 4e16503 meta(changelog): Update changelog for 10.63.0
  • 690f778 test(node-integration): Harden knex mysql2 healthcheck to fix flaky test (#21...
  • 429cdaf test(node-integration-tests): Fix flaky postgresjs basic transaction/error or...
  • 35998e6 test(e2e/hono): Isolate request-data extraction tests onto a dedicated route ...
  • 88e7ad5 feat(server-utils): Expose channel-based, streamlined fastifyIntegration (#...
  • e316151 ref(server-utils): Move mysql orchestrion integration onto bindTracingChannel...
  • e7c24a5 feat(server-utils): Restore caller context for callback tracing channels (#21...
  • bf21b16 fix(nextjs): Don't inject trace meta tags when Cache Components is enabled (#...
  • Additional commits viewable in compare view

Updates google-auth-library from 10.7.0 to 10.9.0

Release notes

Sourced from google-auth-library's releases.

google-auth-library: v10.9.0

10.9.0 (2026-06-24)

Features

  • auth: Regional access boundaries main merge (#8665) (76e6d3b)

Bug Fixes

  • Correct repository URLs in core package.json files (#8722) (368f18e)

google-auth-library: v10.8.1

10.8.1 (2026-06-23)

Bug Fixes

  • Strip trailing slashes from automatic GDCH audience (#8692) (4e4badf)

google-auth-library: v10.8.0

10.8.0 (2026-06-18)

Features

  • Port GDCH credentials support to Node.js Auth SDK (#8301) (75f148c)

Bug Fixes

  • Bump all node submodules (#8178) (9fd76ef)
  • Change the copyright year for files in the packages folder (#8109) (c1a03fe)
Changelog

Sourced from google-auth-library's changelog.

10.9.0 (2026-06-24)

Features

  • auth: Regional access boundaries main merge (#8665) (76e6d3b)

Bug Fixes

  • Correct repository URLs in core package.json files (#8722) (368f18e)

10.8.1 (2026-06-23)

Bug Fixes

  • Strip trailing slashes from automatic GDCH audience (#8692) (4e4badf)

10.8.0 (2026-06-18)

Features

  • Port GDCH credentials support to Node.js Auth SDK (#8301) (75f148c)

Bug Fixes

  • Bump all node submodules (#8178) (9fd76ef)
  • Change the copyright year for files in the packages folder (#8109) (c1a03fe)
Commits

Updates nodemailer from 9.0.1 to 9.0.3

Release notes

Sourced from nodemailer's releases.

v9.0.3

9.0.3 (2026-06-30)

Bug Fixes

  • smtp-connection: harden STARTTLS upgrade and secure socket handling (#1835) (07d8253)

v9.0.2

9.0.2 (2026-06-29)

Bug Fixes

  • addressparser: keep operator chars inside an address-literal as text (#1829) (9ba1064)
  • harden smtp-connection low-severity issues (22ddcea)
  • harden smtp-connection response parsing and socket lifecycle (68860b9)
  • prevent SES transport callback double-invocation and hang on sync errors (#1831) (9517bc5)
  • reject CRLF in HTTP proxy CONNECT destination to prevent request injection (6347b47)
Changelog

Sourced from nodemailer's changelog.

9.0.3 (2026-06-30)

Bug Fixes

  • smtp-connection: harden STARTTLS upgrade and secure socket handling (#1835) (07d8253)

9.0.2 (2026-06-29)

Bug Fixes

  • addressparser: keep operator chars inside an address-literal as text (#1829) (9ba1064)
  • harden smtp-connection low-severity issues (22ddcea)
  • harden smtp-connection response parsing and socket lifecycle (68860b9)
  • prevent SES transport callback double-invocation and hang on sync errors (#1831) (9517bc5)
  • reject CRLF in HTTP proxy CONNECT destination to prevent request injection (6347b47)
Commits

…ory with 14 updates

Bumps the backend-minor-patch group with 14 updates in the /backend directory:

| Package | From | To |
| --- | --- | --- |
| [@anthropic-ai/sdk](https://github.com/anthropics/anthropic-sdk-typescript) | `0.104.2` | `0.110.0` |
| [@aws-sdk/client-kms](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-kms) | `3.1069.0` | `3.1079.0` |
| [@aws-sdk/client-s3](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-s3) | `3.1069.0` | `3.1079.0` |
| [@aws-sdk/s3-request-presigner](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/packages/s3-request-presigner) | `3.1069.0` | `3.1079.0` |
| [@sentry/node](https://github.com/getsentry/sentry-javascript) | `10.58.0` | `10.63.0` |
| [google-auth-library](https://github.com/googleapis/google-cloud-node/tree/HEAD/core/packages/google-auth-library-nodejs) | `10.7.0` | `10.9.0` |
| [nodemailer](https://github.com/nodemailer/nodemailer) | `9.0.1` | `9.0.3` |
| [posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node) | `5.37.1` | `5.39.4` |
| [sharp](https://github.com/lovell/sharp) | `0.35.1` | `0.35.3` |
| [stripe](https://github.com/stripe/stripe-node) | `22.2.1` | `22.3.0` |
| [svix](https://github.com/svix/svix-webhooks) | `1.95.2` | `1.96.1` |
| [eslint](https://github.com/eslint/eslint) | `10.5.0` | `10.6.0` |
| [globals](https://github.com/sindresorhus/globals) | `17.6.0` | `17.7.0` |
| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `4.1.9` | `4.1.10` |



Updates `@anthropic-ai/sdk` from 0.104.2 to 0.110.0
- [Release notes](https://github.com/anthropics/anthropic-sdk-typescript/releases)
- [Changelog](https://github.com/anthropics/anthropic-sdk-typescript/blob/main/CHANGELOG.md)
- [Commits](anthropics/anthropic-sdk-typescript@sdk-v0.104.2...sdk-v0.110.0)

Updates `@aws-sdk/client-kms` from 3.1069.0 to 3.1079.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-kms/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.1079.0/clients/client-kms)

Updates `@aws-sdk/client-s3` from 3.1069.0 to 3.1079.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-s3/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.1079.0/clients/client-s3)

Updates `@aws-sdk/s3-request-presigner` from 3.1069.0 to 3.1079.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/packages/s3-request-presigner/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.1079.0/packages/s3-request-presigner)

Updates `@sentry/node` from 10.58.0 to 10.63.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases)
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md)
- [Commits](getsentry/sentry-javascript@10.58.0...10.63.0)

Updates `google-auth-library` from 10.7.0 to 10.9.0
- [Release notes](https://github.com/googleapis/google-cloud-node/releases)
- [Changelog](https://github.com/googleapis/google-cloud-node/blob/main/core/packages/google-auth-library-nodejs/CHANGELOG.md)
- [Commits](https://github.com/googleapis/google-cloud-node/commits/google-auth-library-v10.9.0/core/packages/google-auth-library-nodejs)

Updates `nodemailer` from 9.0.1 to 9.0.3
- [Release notes](https://github.com/nodemailer/nodemailer/releases)
- [Changelog](https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md)
- [Commits](nodemailer/nodemailer@v9.0.1...v9.0.3)

Updates `posthog-node` from 5.37.1 to 5.39.4
- [Release notes](https://github.com/PostHog/posthog-js/releases)
- [Changelog](https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md)
- [Commits](https://github.com/PostHog/posthog-js/commits/posthog-node@5.39.4/packages/node)

Updates `sharp` from 0.35.1 to 0.35.3
- [Release notes](https://github.com/lovell/sharp/releases)
- [Commits](lovell/sharp@v0.35.1...v0.35.3)

Updates `stripe` from 22.2.1 to 22.3.0
- [Release notes](https://github.com/stripe/stripe-node/releases)
- [Changelog](https://github.com/stripe/stripe-node/blob/master/CHANGELOG.md)
- [Commits](stripe/stripe-node@v22.2.1...v22.3.0)

Updates `svix` from 1.95.2 to 1.96.1
- [Release notes](https://github.com/svix/svix-webhooks/releases)
- [Changelog](https://github.com/svix/svix-webhooks/blob/main/ChangeLog.md)
- [Commits](svix/svix-webhooks@v1.95.2...v1.96.1)

Updates `eslint` from 10.5.0 to 10.6.0
- [Release notes](https://github.com/eslint/eslint/releases)
- [Commits](eslint/eslint@v10.5.0...v10.6.0)

Updates `globals` from 17.6.0 to 17.7.0
- [Release notes](https://github.com/sindresorhus/globals/releases)
- [Commits](sindresorhus/globals@v17.6.0...v17.7.0)

Updates `vitest` from 4.1.9 to 4.1.10
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Changelog](https://github.com/vitest-dev/vitest/blob/main/docs/releases.md)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.10/packages/vitest)

---
updated-dependencies:
- dependency-name: "@anthropic-ai/sdk"
  dependency-version: 0.110.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: backend-minor-patch
- dependency-name: "@aws-sdk/client-kms"
  dependency-version: 3.1079.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: backend-minor-patch
- dependency-name: "@aws-sdk/client-s3"
  dependency-version: 3.1079.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: backend-minor-patch
- dependency-name: "@aws-sdk/s3-request-presigner"
  dependency-version: 3.1079.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: backend-minor-patch
- dependency-name: "@sentry/node"
  dependency-version: 10.63.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: backend-minor-patch
- dependency-name: google-auth-library
  dependency-version: 10.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: backend-minor-patch
- dependency-name: nodemailer
  dependency-version: 9.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: backend-minor-patch
- dependency-name: posthog-node
  dependency-version: 5.39.4
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: backend-minor-patch
- dependency-name: sharp
  dependency-version: 0.35.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: backend-minor-patch
- dependency-name: stripe
  dependency-version: 22.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: backend-minor-patch
- dependency-name: svix
  dependency-version: 1.96.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: backend-minor-patch
- dependency-name: eslint
  dependency-version: 10.6.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: backend-minor-patch
- dependency-name: globals
  dependency-version: 17.7.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: backend-minor-patch
- dependency-name: vitest
  dependency-version: 4.1.10
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: backend-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jul 6, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: backend. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@cloudflare-workers-and-pages

cloudflare-workers-and-pages Bot commented Jul 6, 2026

Copy link
Copy Markdown

Deploying studyhub with  Cloudflare Pages  Cloudflare Pages

Latest commit: a0a28cb
Status:🚫  Build failed.

View logs

@dependabot @github

dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Jul 13, 2026
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/backend/backend-minor-patch-0c9dd04163 branch July 13, 2026 10:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants