Skip to content

fix(deps): update all non-major dependencies#41

Open
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/all-minor-patch
Open

fix(deps): update all non-major dependencies#41
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/all-minor-patch

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate Bot commented Jul 22, 2024
edited
Loading

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package Change Age Confidence Type Update
@biomejs/biome (source) 1.8.31.9.4 age confidence devDependencies minor
@​firebolt-dev/cors 0.4.20.4.3 age confidence dependencies patch
@pandacss/dev (source) 0.43.00.54.0 age confidence devDependencies minor
consola 3.2.33.4.2 age confidence dependencies minor
firebolt 0.4.20.4.3 age confidence dependencies patch
node 20.15.1-alpine20.20.2-alpine age confidence final minor
node 20.15.120.20.2 age confidence stage minor

Release Notes

biomejs/biome (@​biomejs/biome)

v1.9.4

Compare Source

v1.9.3

Compare Source

v1.9.2

Compare Source

v1.9.1

Compare Source

v1.9.0

Compare Source

chakra-ui/panda (@​pandacss/dev)

v0.54.0

Compare Source

Patch Changes

v0.53.7

Compare Source

Patch Changes

v0.53.6

Compare Source

Patch Changes

v0.53.5

Compare Source

Patch Changes

v0.53.4

Compare Source

Patch Changes

v0.53.3

Compare Source

Patch Changes

v0.53.2

Compare Source

Patch Changes

v0.53.1

Compare Source

Patch Changes

v0.53.0

Compare Source

Patch Changes

v0.52.0

Compare Source

Patch Changes

v0.51.1

Compare Source

Patch Changes

  • 9c1327e: Redesigned the recipe report to be more readable and easier to understand. We simplified the JSX and
    Function columns to be more concise.

    BEFORE

    ╔════════════════════════╤══════════════════════╤═════════╤═══════╤════════════╤═══════════════════╤══════════╗
║ Recipe                 │ Variant Combinations │ Usage % │ JSX % │ Function % │ Most Used         │ Found in ║
╟────────────────────────┼──────────────────────┼─────────┼───────┼────────────┼───────────────────┼──────────╢
║ someRecipe (1 variant) │ 1 / 1                │ 100%    │ 100%  │ 0%         │ size.small        │ 1 file   ║
╟────────────────────────┼──────────────────────┼─────────┼───────┼────────────┼───────────────────┼──────────╢
║ button (4 variants)    │ 7 / 9                │ 77.78%  │ 63%   │ 38%        │ size.md, size.sm, │ 2 files  ║
║                        │                      │         │       │            │ state.focused,    │          ║
║                        │                      │         │       │            │ variant.danger,   │          ║
║                        │                      │         │       │            │ variant.primary   │          ║
╚════════════════════════╧══════════════════════╧═════════╧═══════╧════════════╧═══════════════════╧══════════╝

    AFTER

    ╔════════════════════════╤════════════════╤═══════════════════╤═══════════════════╤══════════╤═══════════╗
║ Recipe                 │ Variant values │ Usage %           │ Most used         │ Found in │ Used as   ║
╟────────────────────────┼────────────────┼───────────────────┼───────────────────┼──────────┼───────────╢
║ someRecipe (1 variant) │ 1 value        │ 100% (1 value)    │ size.small        │ 1 file   │ jsx: 100% ║
║                        │                │                   │                   │          │ fn: 0%    ║
╟────────────────────────┼────────────────┼───────────────────┼───────────────────┼──────────┼───────────╢
║ button (4 variants)    │ 9 values       │ 77.78% (7 values) │ size.md, size.sm, │ 2 files  │ jsx: 63%  ║
║                        │                │                   │ state.focused,    │          │ fn: 38%   ║
║                        │                │                   │ variant.danger,   │          │           ║
║                        │                │                   │ variant.primary   │          │           ║
╚════════════════════════╧════════════════╧═══════════════════╧═══════════════════╧══════════╧═══════════╝

v0.51.0

Compare Source

Patch Changes

v0.50.0

Compare Source

Minor Changes

  • fea78c7: Adds support for static analysis of used tokens and recipe variants. It helps to get a birds-eye view of how
    your design system is used and answers the following questions:

    • What tokens are most used?
    • What recipe variants are most used?
    • How many hardcoded values vs tokens do we have?
    panda analyze --scope=<token|recipe>

    Still work in progress but we're excited to get your feedback!

Patch Changes

v0.49.0

Compare Source

Minor Changes

  • 97a0e4d: Add support for animation styles. Animation styles focus solely on animations, allowing you to orchestrate
    animation properties.

    Pairing animation styles with text styles and layer styles can make your styles a lot cleaner.

    Here's an example of this:

    import { defineAnimationStyles } from '@&#8203;pandacss/dev'

export const animationStyles = defineAnimationStyles({
  'slide-fade-in': {
    value: {
      transformOrigin: 'var(--transform-origin)',
      animationDuration: 'fast',
      '&[data-placement^=top]': {
        animationName: 'slide-from-top, fade-in',
      },
      '&[data-placement^=bottom]': {
        animationName: 'slide-from-bottom, fade-in',
      },
      '&[data-placement^=left]': {
        animationName: 'slide-from-left, fade-in',
      },
      '&[data-placement^=right]': {
        animationName: 'slide-from-right, fade-in',
      },
    },
  },
})

    With that defined, I can use it in my recipe or css like so:

    export const popoverSlotRecipe = defineSlotRecipe({
  slots: anatomy.keys(),
  base: {
    content: {
      _open: {
        animationStyle: 'scale-fade-in',
      },
      _closed: {
        animationStyle: 'scale-fade-out',
      },
    },
  },
})

    This feature will drive consumers to lean in towards CSS for animations rather than JS. Composing animation names is a
    powerful feature we should encourage consumers to use.

Patch Changes

v0.48.1

Compare Source

Patch Changes

v0.48.0

Compare Source

Patch Changes

v0.47.1

Compare Source

Patch Changes

v0.47.0

Compare Source

Patch Changes

v0.46.1

Compare Source

Patch Changes

v0.46.0

Compare Source

Patch Changes

v0.45.2

Compare Source

Patch Changes

v0.45.1

Compare Source

Patch Changes

v0.45.0

Compare Source

Patch Changes

v0.44.0

Compare Source

Patch Changes
unjs/consola (consola)

v3.4.2

Compare Source

compare changes

🩹 Fixes
  • Export tree utils (#​349)
  • Calculate box width with the title width (#​362)
🏡 Chore
❤️ Contributors

v3.4.1

Compare Source

compare changes

🩹 Fixes
  • Remove all message lines from stack (#​356)
🏡 Chore
❤️ Contributors

v3.4.0

Compare Source

compare changes

🚀 Enhancements
  • Use upstream @clack/prompts (#​332)
🩹 Fixes
  • Calculate box width without escape sequence chars (#​336)
💅 Refactors
📦 Build
  • Update exports for node16 typescript resolution (#​331)
🏡 Chore
❤️ Contributors
  • Pooya Parsa (@​pi0)
  • Yongqi <yongqi14@​qq.com>

v3.3.3

Compare Source

compare changes

📦 Build
  • Revert "build: update exports for node16 typescript resolution" (2065136)
❤️ Contributors

v3.3.2

Compare Source

compare changes

📦 Build
  • Patch string-width for node 14 support (421c663)
  • Update exports for node16 typescript resolution (18bc852)
❤️ Contributors

v3.3.1

Compare Source

compare changes

🩹 Fixes
  • fancy: Fallback whenIntl is unavailable (#​326)
❤️ Contributors

v3.3.0

Compare Source

compare changes

🚀 Enhancements
  • utils: formatTree utility (#​223)
  • Export prompt option types (#​301)
  • Support report error cause (#​308)
  • prompt: Configurable cancel strategy (#​325)
  • formatTree: Support max depth (#​267)
🩹 Fixes
  • Use initial in select and multiselect prompts (#​232)
  • Make box title color same as border (#​236)
📖 Documentation
📦 Build
  • Fix subpath types (#​265)
  • Add require condition for browser builds (#​243)
🌊 Types
  • Fix prompt with select type return value type (#​238)
🏡 Chore
🎨 Styles
🤖 CI
  • Use conventional commit for autofix (#​217)
❤️ Contributors
nodejs/node (node)

v20.20.2: 2026-03-24, Version 20.20.2 'Iron' (LTS), @​marco-ippolito

Compare Source

This is a security release.

Notable Changes
  • (CVE-2026-21717) fix array index hash collision (Joyee Cheung)
  • (CVE-2026-21713) use timing-safe comparison in Web Cryptography HMAC and KMAC (Filip Skokan)
  • (CVE-2026-21710) use null prototype for headersDistinct/trailersDistinct (Matteo Collina)
  • (CVE-2026-21716) include permission check on lib/fs/promises (RafaelGSS)pull/795>
  • (CVE-2026-21715) add permission check to realpath.native (RafaelGSS)
  • (CVE-2026-21714) handle NGHTTP2_ERR_FLOW_CONTROL error code (RafaelGSS)
  • (CVE-2026-21637) wrap SNICallback invocation in try/catch (Matteo Collina)
Commits

v20.20.1: 2026-03-05, Version 20.20.1 'Iron' (LTS), @​marco-ippolito

Compare Source

Notable Changes
Commits

Note

PR body was truncated to here.

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@changeset-bot
Copy link
Copy Markdown

changeset-bot Bot commented Jul 22, 2024
edited
Loading

⚠️ No Changeset found

Latest commit: 02a1c65

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@coderabbitai
Copy link
Copy Markdown

coderabbitai Bot commented Jul 22, 2024
edited
Loading

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: d81855c1-7748-4325-b192-acaf750ab1dc

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

  • 🔍 Trigger review

Walkthrough

The recent updates to the project involve upgrading the Node.js base images in the Dockerfile and modifying several package versions in package.json. The base images were updated to node:20.19.0 and node:20.19.0-alpine. Additionally, multiple dependencies, including @firebolt-dev/cors, consola, firebolt, @biomejs/biome, and @pandacss/dev, were upgraded to their latest versions, reflecting a general update of the package versions.

Changes

File Change Summary
Dockerfile Updated Node.js base images from 20.15.1 to 20.19.0 and 20.15.1-alpine to 20.19.0-alpine.
package.json Updated versions for multiple packages: @firebolt-dev/cors from 0.4.2 to 0.4.3, consola from 3.2.3 to 3.4.2, firebolt from 0.4.2 to 0.4.3, @biomejs/biome from 1.8.3 to 1.9.4, and @pandacss/dev from 0.43.0 to 0.53.4.

Possibly related issues

  • Dependency Dashboard #4: The changes in the main issue regarding the Dockerfile's Node.js version updates are directly related to the retrieved issue, which also mentions the same Dockerfile with the previous Node.js version.

Poem

🐇 In the garden where code does bloom,
A hop to Node's latest, chasing gloom.
With upgrades sweet, the devs all cheer,
New features, fixes, bring us near!
Let's dance with joy, let bugs take flight,
For every change brings code delight! 🌼

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch renovate/all-minor-patch

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from b6cba60 to 214f984 Compare July 24, 2024 20:19
@renovate renovate Bot changed the title chore(deps): update dependency @pandacss/dev to v0.44.0 chore(deps): update all non-major dependencies Jul 24, 2024
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from 214f984 to 40eb88a Compare August 6, 2024 20:26
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from 40eb88a to c3f8f0a Compare August 15, 2024 02:03
@socket-security
Copy link
Copy Markdown

socket-security Bot commented Aug 15, 2024
edited
Loading

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action Severity Alert  (click "▶" to expand/collapse)
Warn High
Obfuscated code: npm entities is 91.0% likely obfuscated

Confidence: 0.91

Location: Package overview

From: ?npm/@pandacss/dev@0.54.0npm/entities@4.5.0

ℹ Read more on: This package | This alert | What is obfuscated code?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/entities@4.5.0. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

coderabbitai[bot]
coderabbitai Bot reviewed Aug 15, 2024
View reviewed changes
Copy link
Copy Markdown

@coderabbitai coderabbitai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between 75abaee and c3f8f0a.

Files ignored due to path filters (1)
  • bun.lockb is excluded by !**/bun.lockb
Files selected for processing (2)
  • Dockerfile (2 hunks)
  • package.json (1 hunks)
Files skipped from review due to trivial changes (2)
  • Dockerfile
  • package.json

@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from c3f8f0a to 07d692e Compare August 22, 2024 00:25
coderabbitai[bot]
coderabbitai Bot reviewed Aug 22, 2024
View reviewed changes
Copy link
Copy Markdown

@coderabbitai coderabbitai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between c3f8f0a and 07d692e.

Files ignored due to path filters (1)
  • bun.lockb is excluded by !**/bun.lockb
Files selected for processing (2)
  • Dockerfile (2 hunks)
  • package.json (1 hunks)
Files skipped from review as they are similar to previous changes (2)
  • Dockerfile
  • package.json

@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from 07d692e to f07e718 Compare August 29, 2024 08:46
coderabbitai[bot]
coderabbitai Bot reviewed Aug 29, 2024
View reviewed changes
Copy link
Copy Markdown

@coderabbitai coderabbitai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

Commits

Files that changed from the base of the PR and between 07d692e and f07e718.

Files ignored due to path filters (1)
  • bun.lockb is excluded by !**/bun.lockb
Files selected for processing (2)
  • Dockerfile (2 hunks)
  • package.json (1 hunks)
Files skipped from review due to trivial changes (2)
  • Dockerfile
  • package.json

@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from f07e718 to e3a7b33 Compare September 6, 2024 13:35
@renovate renovate Bot changed the title chore(deps): update all non-major dependencies fix(deps): update all non-major dependencies Sep 6, 2024
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 345c5a0 to 07f09f2 Compare September 12, 2024 14:32
@renovate renovate Bot changed the title fix(deps): update all non-major dependencies chore(deps): update all non-major dependencies Sep 12, 2024
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 500eb18 to 98ef810 Compare September 19, 2024 15:12
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from 98ef810 to b03f2e2 Compare September 23, 2024 01:53
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 95d9dfa to 72cdbd0 Compare October 4, 2024 21:10
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from eadf611 to a4e1f3e Compare October 19, 2024 04:35
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from a4e1f3e to ae53f03 Compare November 6, 2024 11:36
@sweep-ai-deprecated
Copy link
Copy Markdown

sweep-ai-deprecated Bot commented Nov 6, 2024
edited
Loading

Hey @renovate[bot], here is an example of how you can ask me to improve this pull request:

@Sweep Add unit tests for the Dockerfile to ensure the correct Node.js version is being used and that the build stages are working correctly. This could include tests that verify:
- The base image is using the specified Node.js version
- The build stage successfully compiles the project
- The release stage contains only the necessary files

📖 For more information on how to use Sweep, please read our documentation.

@renovate renovate Bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 78f7d58 to 371bb82 Compare November 20, 2024 20:39
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from 371bb82 to 4431b19 Compare December 7, 2024 21:51
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch 3 times, most recently from 183cec6 to f66a4a7 Compare March 24, 2025 14:44
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from af9e0f7 to 5478e79 Compare April 22, 2025 21:23
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 32c1db1 to 1ed5f9c Compare April 28, 2025 00:51
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from 1ed5f9c to f7302bd Compare May 15, 2025 18:21
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from f7302bd to 5f8b4e0 Compare May 25, 2025 09:14
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from 5f8b4e0 to f7905e7 Compare June 13, 2025 03:35
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from f7905e7 to d5fe1aa Compare June 23, 2025 17:32
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from d5fe1aa to 44404ec Compare July 16, 2025 01:00
@gitstream-cm
Copy link
Copy Markdown

gitstream-cm Bot commented Jul 16, 2025

🚨 gitStream Monthly Automation Limit Reached 🚨

Your organization has exceeded the number of pull requests allowed for automation with gitStream.
Monthly PRs automated: 251/250

To continue automating your PR workflows and unlock additional features, please contact LinearB.

@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from 44404ec to 01797b7 Compare September 6, 2025 18:51
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from 01797b7 to bba952e Compare October 21, 2025 17:37
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from bba952e to e9f40af Compare November 10, 2025 14:13
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from e9f40af to f38da82 Compare November 25, 2025 20:56
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from f38da82 to f348ec6 Compare December 10, 2025 15:46
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from f348ec6 to d1ccf95 Compare December 31, 2025 15:02
@socket-security
Copy link
Copy Markdown

socket-security Bot commented Dec 31, 2025
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updated@​firebolt-dev/​cors@​0.4.2 ⏵ 0.4.370 +1110063 +1677100
Updatedfirebolt@​0.4.2 ⏵ 0.4.376 +310073 +478 +1100
Updated@​pandacss/​dev@​0.43.0 ⏵ 0.54.0100 +110078 +295 +3100
Updatedconsola@​3.2.3 ⏵ 3.4.299 +1100100 +182100
Updated@​biomejs/​biome@​1.8.3 ⏵ 1.9.493 +110010098 -1100

View full report

@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from d1ccf95 to 8c0c30c Compare January 15, 2026 01:12
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from 8c0c30c to 6e8181d Compare February 2, 2026 21:39
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 358f267 to 443e753 Compare February 17, 2026 17:07
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 94be054 to 7609f49 Compare March 13, 2026 16:56
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from af7d753 to 092063a Compare March 30, 2026 17:42
@renovate renovate Bot force-pushed the renovate/all-minor-patch branch from 092063a to 02a1c65 Compare May 18, 2026 18:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

@renovate-approve renovate-approve[bot] renovate-approve[bot] approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants