chore(deps): upgrade all dependencies#1542
Closed
yanglbme wants to merge 1 commit into
Closed
Conversation
- Bump @types/node ^25.7.0 -> ^25.8.0 - Bump eslint ^10.3.0 -> ^10.4.0 - Update pnpm-lock.yaml with all transitive dependency updates - Prettier remains pinned at 2.8.8
|
😭 Surge Preview build failed. Please check the workflow run for details. |
Contributor
There was a problem hiding this comment.
Pull request overview
This PR upgrades root development dependencies and regenerates the pnpm lockfile across the monorepo. The lockfile update currently appears inconsistent with the repo’s pnpm workspace overrides and patches.
Changes:
- Updates root
@types/nodeandeslintdev dependency ranges. - Refreshes many lockfile resolutions and peer dependency snapshots.
- Removes/changes several lockfile override and patch-related resolutions.
Reviewed changes
Copilot reviewed 1 out of 2 changed files in this pull request and generated 11 comments.
| File | Description |
|---|---|
package.json |
Updates root dev dependency ranges for @types/node and eslint. |
pnpm-lock.yaml |
Regenerates dependency resolutions across workspace packages. |
Files not reviewed (1)
- pnpm-lock.yaml: Language not supported
Comments suppressed due to low confidence (6)
pnpm-lock.yaml:11348
- The workspace override maps undici@^7 to ^8.1.0, but this dependency now resolves undici 7.25.0. That bypasses the repo's explicit undici override and leaves a different network stack version in the install.
pnpm-lock.yaml:13756 - miniflare now resolves undici 7.24.8 even though pnpm-workspace.yaml overrides undici@^7 to ^8.1.0. This bypasses the same network dependency override for the Cloudflare dev stack.
pnpm-lock.yaml:13768 - miniflare@4.20260507.1 also resolves undici 7.24.8 instead of the workspace override target (^8.1.0). Both miniflare entries should be regenerated with the undici override applied.
pnpm-lock.yaml:395 - These theme package resolutions now pull @codemirror/view@6.43.0 even though the workspace override and root dependency pin
@codemirror/viewto 6.42.1. This reintroduces an unpatched CodeMirror view version in editor-related packages.
pnpm-lock.yaml:398 - The indentation markers package also resolves @codemirror/view@6.43.0 instead of the workspace-pinned 6.42.1. That leaves another editor extension using the unpatched CodeMirror view version.
pnpm-lock.yaml:13839 - pnpm-workspace.yaml:26 overrides minimatch to ^10.2.5, but multimatch now resolves minimatch 3.1.5. This is another stale resolution caused by ignoring the workspace overrides.
| '@codemirror/view': | ||
| specifier: 6.42.1 | ||
| version: 6.42.1(patch_hash=72ab406b093178346885a0a1471852dcc0cb960f7206a660d8fa76b54639bc07) | ||
| version: 6.42.1 |
| juice: | ||
| specifier: ^11.1.1 | ||
| version: 11.1.1(patch_hash=64286af9d3913b3ffbee649d634de8ec5a603857ce1185030d8bb6e4a384c92c) | ||
| version: 11.1.1 |
| ohash: 2.0.11 | ||
| oxfmt: 0.35.0 | ||
| prettier: 2.8.8 | ||
| prettier: 3.8.3 |
| parse5-htmlparser2-tree-adapter: 7.1.0 | ||
| parse5-parser-stream: 7.1.2 | ||
| undici: 8.2.0 | ||
| undici: 6.25.0 |
| @@ -4,48 +4,6 @@ settings: | |||
| autoInstallPeers: true | |||
| excludeLinksFromLockfile: false | |||
|
|
|||
| execa@1.0.0: | ||
| dependencies: | ||
| cross-spawn: 7.0.6 | ||
| cross-spawn: 6.0.6 |
| dependencies: | ||
| '@babel/runtime-corejs2': 7.29.2 | ||
| querystring: qs@6.15.1 | ||
| querystring: 0.2.1 |
| markdown-it: 14.1.1 | ||
| mime: 1.6.0 | ||
| minimatch: 10.2.5 | ||
| minimatch: 3.1.5 |
| pkg-types@1.3.1: | ||
| dependencies: | ||
| confbox: 0.2.4 | ||
| confbox: 0.1.8 |
| semver: 7.8.0 | ||
| shellwords: 0.1.1 | ||
| uuid: 14.0.0 | ||
| uuid: 8.3.2 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Upgrade all project dependencies to latest compatible versions:
Root package.json
pnpm-lock.yaml
Notes