chore(deps)(deps): bump vuetify from 3.12.6 to 3.12.8 in /frontend#267
Closed
dependabot[bot] wants to merge 1 commit into
Closed
chore(deps)(deps): bump vuetify from 3.12.6 to 3.12.8 in /frontend#267dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
Bumps [vuetify](https://github.com/vuetifyjs/vuetify/tree/HEAD/packages/vuetify) from 3.12.6 to 3.12.8. - [Release notes](https://github.com/vuetifyjs/vuetify/releases) - [Commits](https://github.com/vuetifyjs/vuetify/commits/v3.12.8/packages/vuetify) --- updated-dependencies: - dependency-name: vuetify dependency-version: 3.12.8 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Contributor
Author
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
berntpopp
added a commit
that referenced
this pull request
Jun 12, 2026
…fix (#270) * chore(deps): bump frontend minor and patch dependencies Applies the dependabot frontend-minor-patch group (#269) plus the individual vue (#263), vite (#265), and vuetify (#267) bumps in one lockfile regeneration: axios 1.17.0, libphonenumber-js 1.13.6, vue 3.5.38, vue-i18n 11.4.5, vuetify 3.12.8, vite 6.4.3, eslint 10.5.0, happy-dom 20.10.2, vitest coverage/test-utils and related plugins. vue-router stays at ^5.0.7: 5.1.0 declares peerOptional vite ^7 || ^8 and fails npm install against the vite 6 toolchain pinned here. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com> * ci(deps): bump codecov/codecov-action from 6 to 7 Supersedes dependabot #268. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com> * fix(cli): load lazy group params before option parsing Typer 0.25 no longer triggers the lazy proxy load before parsing group-level options, so 'phentrieve text --interactive' failed with 'No such option'. Override get_params to load the proxied app on demand, and preserve constructor help text when the loaded command has none. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com> * chore(deps): upgrade typer to 0.25.1, authlib to 1.7.2, chromadb to 1.5.9 - authlib 1.7.2 fixes GHSA-r95x-qfjj-fjj2 (OIDC open redirect) - chromadb 1.5.9 is the latest release; GHSA-f4j7-r4q5-qw2c has no patched version yet - typer moves to 0.25.1; the 0.26 line (dependabot #264) vendors click as typer._click and breaks the lazy CLI groups at runtime (16 test failures) and under mypy, so the constraint stays <0.26.0 with a comment explaining why Co-Authored-By: Claude Fable 5 <noreply@anthropic.com> * refactor(phenopackets): use context manager for HPO database access Resolves the CodeQL py/should-use-with finding in _get_hpo_version_from_db and adds unit coverage for the version lookup, missing-metadata, and database-error paths. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com> * style(frontend): reformat test for prettier 3.8 The lockfile regeneration moved prettier from 3.7.4 to 3.8.3, which formats ResultsDisplay.test.js differently and failed the CI format:check gate. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com> * ci(security): make dependency scans pass against unfixable CVEs - upgrade pyjwt to 2.13.0 and pip to 26.1.2 (fix pip-audit findings) - hold chromadb at 1.5.7: 1.5.9 is equally vulnerable to GHSA-f4j7-r4q5-qw2c and changing the version trips the diff-based dependency review on a critical advisory with no patched release - ignore CVE-2026-45829 (chromadb) and CVE-2025-3000 (torch) in pip-audit with dated comments; both have no fixed version upstream and already fail the scheduled scans on main Co-Authored-By: Claude Fable 5 <noreply@anthropic.com> * chore: bump patch versions for combined dependency update phentrieve 0.21.3 -> 0.21.4, frontend 0.11.3 -> 0.11.4 Co-Authored-By: Claude Fable 5 <noreply@anthropic.com> --------- Co-authored-by: Claude Fable 5 <noreply@anthropic.com>
Contributor
Author
|
Looks like vuetify is up-to-date now, so this is no longer needed. |
dependabot
Bot
deleted the
dependabot/npm_and_yarn/frontend/vuetify-3.12.8
branch
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps vuetify from 3.12.6 to 3.12.8.
Release notes
Sourced from vuetify's releases.
Commits
8d5d16achore(release): publish v3.12.87bdc82cfix(VProgressLinear): avoid opacity:NaN when rendering with SSR (#22880)5ce31e4fix(VNumberInput): keep both controls enabled when emptybe370cdfix(focusTrap): prevent page scroll when capturing focusdea0f97chore(release): publish v3.12.7f7e7389fix(VSelect/VAutocomplete/VCombobox): keep menu open when scrollingDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)