Bump the production-dependencies group across 1 directory with 5 updates by dependabot[bot] · Pull Request #165 · betagouv/grist-custom-widgets-fr-admin

dependabot · 2026-02-01T00:24:04Z

Bumps the production-dependencies group with 5 updates in the / directory:

Package	From	To
@turf/turf	`7.3.1`	`7.3.5`
graphql-request	`7.3.5`	`7.4.0`
next	`16.2.3`	`16.2.4`
react	`19.2.1`	`19.2.5`
react-dom	`19.2.1`	`19.2.5`

Updates @turf/turf from 7.3.1 to 7.3.5

Release notes

Sourced from @turf/turf's releases.

v7.3.5

What's Changed

Main goal of this release was to revert a build breaking performance improvement introduced in v7.3.2 that was affecting CommonJS environments.

Reverted performance related improvement to clusters-dbscan that broke builds by @smallsaucepan in Turfjs/turf#3049

Other bug fixes and new functionality:

Add @turf/directional-mean to @turf/turf by @mfedderly in Turfjs/turf#3002

Mark old nearest-point-on-line properties as deprecated by @EmilJunker in Turfjs/turf#3005

Housekeeping and behind the scenes changes:

Introduced tstyche for type checking and to guard against unintentional API changes by @smallsaucepan in Turfjs/turf#3020

Remove unused scripts by @mfedderly in Turfjs/turf#3036

Update generate-readme script by @mfedderly in Turfjs/turf#3037

Full Changelog: Turfjs/turf@v7.3.4...v7.3.5

v7.3.4

Fixed a couple of backwards steps, one that was causing build breaks for users and a bug fix that wasn't backwards compatible.

What's Changed

Reverted backward incompatible fix to nearestPointOnLine by @smallsaucepan in Turfjs/turf#3017

Added newer kdbush types to @turf/turf as a dependency by @smallsaucepan in Turfjs/turf#3019

Full Changelog: Turfjs/turf@v7.3.3...v7.3.4

v7.3.3

Patch release to fix an unintended change to the return type of lineOffset that was causing compilation issues for Turf users.

What's Changed

Fix @turf/line-offset's return type regression by @mfedderly in Turfjs/turf#3009

Full Changelog: Turfjs/turf@v7.3.2...v7.3.3

v7.3.2

Patch release with several bug fixes.

What's Changed

Bug fixes and new functionality:

Fixed a bug in nearestPointOnLine causing duplicate points to be returned from lineSlice by @smallsaucepan in Turfjs/turf#2951

turf-boolean-contains + turf-boolean-within: Fix line in polygon by @samuelarbibe in Turfjs/turf#2848

@turf/boolean-contains - support for multipolygon inside polygon by @MartinP-C in Turfjs/turf#2357

Refactor and extend properties of returned nearest point in @turf/nearest-point-on-line by @EmilJunker in Turfjs/turf#2867

Changed booleanCrosses with two input lines to recognise if crossing point is between vertices by @smallsaucepan in Turfjs/turf#2968

... (truncated)

Commits

a33ca38 v7.3.5
fbfa6a7 Reverted performance related improvement that broke builds. While faster, kdb...
6a2f567 Update generate-readme script (#3037)
6d9a78e Add @turf/directional-mean to @turf/turf (#3002)
80cda0e Remove unused scripts (#3036)
9a3043e Mark old nearest-point-on-line properties as deprecated (#3005)
1fed227 Introduced tstyche for type checking and to guard against unintentional API c...
9428e7c Merge pull request #3021 from Turfjs/releases/7.3.4
a087864 v7.3.4
4e70cc2 Added newer kdbush types to @turf/turf as a dependency to address a clustersD...
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @turf/turf since your current version.

Updates graphql-request from 7.3.5 to 7.4.0

Commits

9b8714c 7.4.0
42eeab1 Include original response in client errors (#1476)
See full diff in compare view

Updates next from 16.2.3 to 16.2.4

Release notes

Sourced from next's releases.

v16.2.4

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

chore: Bump reqwest to 0.13.2 (Fixes Google Fonts with Turbopack for Windows on ARM64) (#92713)

Turbopack: fix filesystem watcher config not applying follow_symlinks(false) (#92631)

Scope Safari ?ts= cache-buster to CSS/font assets only (Pages Router) (#92580)

Compiler: Support boolean and number primtives in next.config defines (#92731)

turbo-tasks: Fix recomputation loop by allowing cell cleanup on error during recomputation (#92725)

Turbopack: shorter error for ChunkGroupInfo::get_index_of (#92814)

Turbopack: shorter error message for ModuleBatchesGraph::get_entry_index (#92828)

Adding more system info to the 'initialize project' trace (#92427)

Credits

Huge thanks to @Badbird5907, @lukesandberg, @andrewimm, @sokra, and @mischnic for helping!

Commits

2275bd8 v16.2.4
e073983 Adding more system info to the 'initialize project' trace (#92427)
8a540b5 Turbopack: shorter error message for ModuleBatchesGraph::get_entry_index (#92...
2f5343f Turbopack: shorter error for ChunkGroupInfo::get_index_of (#92814)
2ad9d3f turbo-tasks: Fix recomputation loop by allowing cell cleanup on error during ...
6f3808e Compiler: Support boolean and number primtives in next.config defines (#92731)
fbc7684 Scope Safari ?ts= cache-buster to CSS/font assets only (Pages Router) (#92580)
805d758 Turbopack: fix filesystem watcher config not applying follow_symlinks(false) ...
1056fae chore: Bump reqwest to 0.13.2 (#92713)
See full diff in compare view

Updates react from 19.2.1 to 19.2.5

Release notes

Sourced from react's releases.

19.2.5 (April 8th, 2026)

React Server Components

Add more cycle protections (#36236 by @eps1lon and @unstubbable)

19.2.4 (January 26th, 2026)

React Server Components

Add more DoS mitigations to Server Actions, and harden Server Components (#35632 by @gnoff, @lubieowoce, @sebmarkbage, @unstubbable)

19.2.3 (December 11th, 2025)

React Server Components

Add extra loop protection to React Server Functions (@sebmarkbage #35351)

19.2.2 (December 11th, 2025)

React Server Components

Move react-server-dom-webpack/*.unbundled to private react-server-dom-unbundled (@eps1lon facebook/react#35290)

Patch Promise cycles and toString on Server Functions (@sebmarkbage, @unstubbable #35289, #35345)

Commits

23f4f9f 19.2.5
90ab3f8 Version 19.2.4
612e371 Version 19.2.3
b910fc1 Version 19.2.2
See full diff in compare view

Updates react-dom from 19.2.1 to 19.2.5

Release notes

Sourced from react-dom's releases.

19.2.5 (April 8th, 2026)

React Server Components

Add more cycle protections (#36236 by @eps1lon and @unstubbable)

19.2.4 (January 26th, 2026)

React Server Components

Add more DoS mitigations to Server Actions, and harden Server Components (#35632 by @gnoff, @lubieowoce, @sebmarkbage, @unstubbable)

19.2.3 (December 11th, 2025)

React Server Components

Add extra loop protection to React Server Functions (@sebmarkbage #35351)

19.2.2 (December 11th, 2025)

React Server Components

Move react-server-dom-webpack/*.unbundled to private react-server-dom-unbundled (@eps1lon facebook/react#35290)

Patch Promise cycles and toString on Server Functions (@sebmarkbage, @unstubbable #35289, #35345)

Commits

23f4f9f 19.2.5
90ab3f8 Version 19.2.4
612e371 Version 19.2.3
b910fc1 Version 19.2.2
See full diff in compare view

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

fflorent · 2026-02-04T10:29:42Z

@dependabot rebase

Bumps the production-dependencies group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@turf/turf](https://github.com/Turfjs/turf) | `7.3.1` | `7.3.5` | | [graphql-request](https://github.com/graffle-js/graffle) | `7.3.5` | `7.4.0` | | [next](https://github.com/vercel/next.js) | `16.2.3` | `16.2.4` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.1` | `19.2.5` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.1` | `19.2.5` | Updates `@turf/turf` from 7.3.1 to 7.3.5 - [Release notes](https://github.com/Turfjs/turf/releases) - [Changelog](https://github.com/Turfjs/turf/blob/master/CHANGELOG.md) - [Commits](Turfjs/turf@v7.3.1...v7.3.5) Updates `graphql-request` from 7.3.5 to 7.4.0 - [Release notes](https://github.com/graffle-js/graffle/releases) - [Commits](graffle-js/graffle@v7.3.5...7.4.0) Updates `next` from 16.2.3 to 16.2.4 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v16.2.3...v16.2.4) Updates `react` from 19.2.1 to 19.2.5 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.5/packages/react) Updates `react-dom` from 19.2.1 to 19.2.5 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.5/packages/react-dom) --- updated-dependencies: - dependency-name: "@turf/turf" dependency-version: 7.3.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: graphql-request dependency-version: 7.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: next dependency-version: 16.1.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: react dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: react-dom dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Feb 1, 2026

dependabot Bot force-pushed the dependabot/npm_and_yarn/production-dependencies-0c2cfe8147 branch from 692bea5 to eecb842 Compare February 4, 2026 10:30

dependabot Bot force-pushed the dependabot/npm_and_yarn/production-dependencies-0c2cfe8147 branch from eecb842 to 9e5538f Compare April 1, 2026 00:33

dependabot Bot force-pushed the dependabot/npm_and_yarn/production-dependencies-0c2cfe8147 branch from 9e5538f to 6f2f681 Compare May 1, 2026 00:40

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the production-dependencies group across 1 directory with 5 updates#165

Bump the production-dependencies group across 1 directory with 5 updates#165
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/production-dependencies-0c2cfe8147

dependabot Bot commented on behalf of github Feb 1, 2026 •

edited

Loading

Uh oh!

fflorent commented Feb 4, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Uh oh!

Conversation

dependabot Bot commented on behalf of github Feb 1, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v7.3.5

What's Changed

v7.3.4

What's Changed

v7.3.3

What's Changed

v7.3.2

What's Changed

v16.2.4

Core Changes

Credits

19.2.5 (April 8th, 2026)

React Server Components

19.2.4 (January 26th, 2026)

React Server Components

19.2.3 (December 11th, 2025)

React Server Components

19.2.2 (December 11th, 2025)

React Server Components

19.2.5 (April 8th, 2026)

React Server Components

19.2.4 (January 26th, 2026)

React Server Components

19.2.3 (December 11th, 2025)

React Server Components

19.2.2 (December 11th, 2025)

React Server Components

Uh oh!

fflorent commented Feb 4, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

dependabot Bot commented on behalf of github Feb 1, 2026 •

edited

Loading