Skip to content

bump packages#102

Merged
jldeen merged 1 commit into
mainfrom
jldeen/dependabot-fixes
Jun 9, 2026
Merged

bump packages#102
jldeen merged 1 commit into
mainfrom
jldeen/dependabot-fixes

Conversation

@jldeen

@jldeen jldeen commented Jun 9, 2026

Copy link
Copy Markdown
Collaborator

This pull request includes dependency updates and a configuration change to group all dependencies together for updates. The main changes are:

Dependency updates:

  • Updated several dependencies in package.json, including @astrojs/preact, @primer/react-brand, astro, react, and baseline-browser-mapping to their latest patch or minor versions.

Configuration improvements:

  • Modified .github/dependabot.yaml to add a group called all-dependencies that matches all dependency patterns, enabling Dependabot to group all updates together.

Fixes #101, #100, #99, #98, #97

Copilot AI review requested due to automatic review settings June 9, 2026 18:43
@jldeen jldeen requested a review from Damovisa as a code owner June 9, 2026 18:43
GitHub Advanced Security started work on behalf of jldeen June 9, 2026 18:43 View session
GitHub Advanced Security finished work on behalf of jldeen June 9, 2026 18:44
Copilot AI reviewed Jun 9, 2026
View reviewed changes

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates JavaScript dependencies and adjusts Dependabot configuration to group npm dependency updates into a single PR, reducing update noise for this repository.

Changes:

  • Bumped key runtime/dev dependencies (Astro, React, @astrojs/preact, @primer/react-brand, baseline-browser-mapping) in package.json and refreshed package-lock.json.
  • Added a Dependabot group to consolidate all npm dependency updates into one grouped update PR.
Show a summary per file
File Description
package.json Updates direct dependency/version ranges (Astro, React, Primer Brand, etc.).
package-lock.json Updates the lockfile to align with the new dependency versions and transitive resolutions.
.github/dependabot.yaml Adds an all-dependencies group (patterns: ["*"]) for npm updates to group dependency bumps together.

Copilot's findings

Tip

Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

  • Files reviewed: 2/3 changed files
  • Comments generated: 2

Comment thread package.json
"astro": "^6.3.8",
"@astrojs/preact": "^5.1.5",
"@primer/react-brand": "^0.68.0",
"astro": "^6.4.5",
Comment thread package.json
"@playwright/test": "^1.60.0",
"@tailwindcss/postcss": "^4.3.0",
"baseline-browser-mapping": "^2.10.32"
"baseline-browser-mapping": "^2.10.35"
@jldeen jldeen merged commit 5651003 into main Jun 9, 2026
7 checks passed
@jldeen jldeen deleted the jldeen/dependabot-fixes branch June 9, 2026 18:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@Damovisa Damovisa Awaiting requested review from Damovisa Damovisa is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jldeen