Skip to content

build(deps): Bump the core-framework group across 1 directory with 5 updates#46

Open
dependabot[bot] wants to merge 1 commit intodevfrom
dependabot/npm_and_yarn/dev/core-framework-a5baa295cb
Open

build(deps): Bump the core-framework group across 1 directory with 5 updates#46
dependabot[bot] wants to merge 1 commit intodevfrom
dependabot/npm_and_yarn/dev/core-framework-a5baa295cb

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot bot commented on behalf of github Apr 13, 2026

Bumps the core-framework group with 5 updates in the / directory:

Package From To
@supabase/ssr 0.8.0 0.10.2
@supabase/supabase-js 2.93.1 2.103.0
next 16.1.5 16.2.3
react 19.2.4 19.2.5
react-dom 19.2.4 19.2.5

Updates @supabase/ssr from 0.8.0 to 0.10.2

Release notes

Sourced from @​supabase/ssr's releases.

v0.10.2

0.10.2 (2026-04-09)

Bug Fixes

v0.10.2-rc.88

What's Changed

Full Changelog: supabase/ssr@v0.10.1...v0.10.2-rc.88

v0.10.1

0.10.1 (2026-04-08)

Bug Fixes

  • auth: respect user-provided auth options in createBrowserClient (#167) (5f04837)

v0.10.0

0.10.0 (2026-03-30)

Features

  • pass cache headers to setAll to prevent CDN caching of auth responses (#176) (14962d2)

v0.10.0-rc.79

What's Changed

Full Changelog: supabase/ssr@v0.10.0-rc.78...v0.10.0-rc.79

v0.10.0-rc.78

What's Changed

Full Changelog: supabase/ssr@v0.10.0-rc.77...v0.10.0-rc.78

v0.10.0-rc.77

What's Changed

... (truncated)

Changelog

Sourced from @​supabase/ssr's changelog.

0.10.2 (2026-04-09)

Bug Fixes

0.10.1 (2026-04-08)

Bug Fixes

  • auth: respect user-provided auth options in createBrowserClient (#167) (5f04837)

0.10.0 (2026-03-30)

Features

  • pass cache headers to setAll to prevent CDN caching of auth responses (#176) (14962d2)

0.9.0 (2026-03-02)

Features

  • release workflow RC versioning and publish reliability (#164) (81e68f4)

0.8.1 (2026-03-02)

Bug Fixes

  • update README session docs (#159) (b859905)
  • use skipAutoInitialize to prevent SSR token refresh race condition (#131) (0b7be28)
Commits
  • 6fc9c52 chore(main): release 0.10.2 (#198)
  • 6bf0226 fix(ci): remove packageManager field (#197)
  • 6f897b8 chore(main): release 0.10.1 (#195)
  • 465759d chore(ci): upgrade Node.js to 22 and npm to 11 via corepack (#196)
  • 5f04837 fix(auth): respect user-provided auth options in createBrowserClient (#167)
  • 693eab5 chore: update @​supabase/supabase-js to v2.102.1 (#193)
  • af23c17 chore: update @​supabase/supabase-js to v2.101.1 (#189)
  • 12a09d2 docs: shorten createServerClient tsdoc (#174)
  • 2224e06 chore: update @​supabase/supabase-js to v2.101.0 (#188)
  • 8a167dc chore(main): release 0.10.0 (#180)
  • Additional commits viewable in compare view

Updates @supabase/supabase-js from 2.93.1 to 2.103.0

Release notes

Sourced from @​supabase/supabase-js's releases.

v2.103.0

2.103.0 (2026-04-09)

🚀 Features

  • postgrest: add stripNulls method for null value stripping (#2189)
  • storage: add cacheNonce parameter for download (#2234)

🩹 Fixes

  • postgrest: fix scalar computed column type inference for isNotNullable and SETOF scalar (#2224)

❤️ Thank You

v2.103.0-canary.2

2.103.0-canary.2 (2026-04-09)

🚀 Features

  • postgrest: add stripNulls method for null value stripping (#2189)
  • storage: add cacheNonce parameter for download (#2234)
  • supabase: export PostgrestFilterBuilder and StorageApiError from supabase-js (#2222)

🩹 Fixes

  • auth: downgrade console.error to console.warn for missing session (#2214)
  • functions: add toJSON to FunctionsError for correct JSON serialization (#2226)
  • postgrest: fix scalar computed column type inference for isNotNullable and SETOF scalar (#2224)
  • storage: set correct content-type for uploads (#2211)
  • storage: avoid duplicate content-type headers in vector requests (#2220)

❤️ Thank You

v2.103.0-canary.1

2.103.0-canary.1 (2026-04-09)

🚀 Features

  • storage: add cacheNonce parameter for download (#2234)
  • supabase: export PostgrestFilterBuilder and StorageApiError from supabase-js (#2222)

... (truncated)

Changelog

Sourced from @​supabase/supabase-js's changelog.

2.103.0 (2026-04-09)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.102.1 (2026-04-07)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.102.0 (2026-04-07)

🚀 Features

  • supabase: export PostgrestFilterBuilder and StorageApiError from supabase-js (#2222)
  • postgrest: add automatic retries for transient errors (#2072)

❤️ Thank You

2.101.1 (2026-03-31)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.101.0 (2026-03-30)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.100.1 (2026-03-26)

🩹 Fixes

  • postgrest: narrow tstyche testFileMatch to only type test files (#2193)

❤️ Thank You

2.100.0 (2026-03-23)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.99.2 (2026-03-16)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.99.1 (2026-03-11)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

... (truncated)

Commits
  • 16dd265 chore(release): version 2.102.1 changelogs (#2233)
  • 0c1e6db chore(release): version 2.102.0 changelogs (#2232)
  • 5a6a5be feat(supabase): export PostgrestFilterBuilder and StorageApiError from supaba...
  • ea3e086 feat(postgrest): add automatic retries for transient errors (#2072)
  • ddae672 ci(repo): fix flaky tests (#2210)
  • 647cee8 fix(ci): add --ignore-scripts to platform test installs to block post install...
  • ea30c93 chore(release): version 2.101.1 changelogs (#2208)
  • 79d1a08 chore(release): version 2.101.0 changelogs (#2203)
  • 5053334 chore(release): version 2.100.1 changelogs (#2196)
  • cd6335e docs(repo): enrich docs comment for remaining packages (#2165)
  • Additional commits viewable in compare view

Updates next from 16.1.5 to 16.2.3

Release notes

Sourced from next's releases.

v16.2.3

[!NOTE] This release is backporting security and bug fixes. For more information about the fixed security vulnerability, please see https://vercel.com/changelog/summary-of-cve-2026-23869. The release does not include all pending features/changes on canary.

Core Changes

  • Ensure app-page reports stale ISR revalidation errors via onRequestError (#92282)
  • Fix [Bug]: manifest.ts breaks HMR in Next.js 16.2 (#91981 through #92273)
  • Deduplicate output assets and detect content conflicts on emit (#92292)
  • Fix styled-jsx race condition: styles lost due to concurrent rendering (#92459)
  • turbo-tasks-backend: stability fixes for task cancellation and error handling (#92254)

Credits

Huge thanks to @​icyJoseph, @​sokra, @​wbinnssmith, @​eps1lon and @​ztanner for helping!

v16.2.2

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

  • backport: Move expanded adapters docs to API reference (#92115) (#92129)
  • Backport: TypeScript v6 deprecations for baseUrl and moduleResolution (#92130)
  • [create-next-app] Skip interactive prompts when CLI flags are provided (#91840)
  • next.config.js: Accept an option for serverFastRefresh (#91968)
  • Turbopack: enable server HMR for app route handlers (#91466)
  • Turbopack: exclude metadata routes from server HMR (#92034)
  • Fix CI for glibc linux builds
  • Backport: disable bmi2 in qfilter #92177
  • [backport] Fix CSS HMR on Safari (#92174)

Credits

Huge thanks to @​nextjs-bot, @​icyJoseph, @​ijjk, @​gaojude, @​wbinnssmith, @​lukesandberg, and @​bgw for helping!

v16.2.1

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

  • docs: post release amends (#91715)
  • docs: fix broken Activity Patterns demo link in preserving UI state guide (#91698)
  • Fix adapter outputs for dynamic metadata routes (#91680)
  • Turbopack: fix webpack loader runner layer (#91727)
  • Fix server actions in standalone mode with cacheComponents (#91711)
  • turbo-persistence: remove Unmergeable mmap advice (#91713)
  • Fix layout segment optimization: move app-page imports to server-utility transition (#91701)
  • Turbopack: lazy require metadata and handle TLA (#91705)
  • [turbopack] Respect {eval:true} in worker_threads constructors (#91666)

... (truncated)

Commits
  • d5f649b v16.2.3
  • 2873928 [16.x] Avoid consuming cyclic models multiple times (#75)
  • d7c7765 [backport]: Ensure app-page reports stale ISR revalidation errors via onReque...
  • c573e8c fix(server-hmr): metadata routes overwrite page runtime HMR handler (#92273)
  • 57b8f65 next-core: deduplicate output assets and detect content conflicts on emit (#9...
  • f158df1 Fix styled-jsx race condition: styles lost due to concurrent rendering (#92459)
  • 356d605 turbo-tasks-backend: stability fixes for task cancellation and error handling...
  • 3b77a6e Fix DashMap read-write self-deadlock in task_cache causing hangs (#92210)
  • b2f208a Backport: new view-transitions guide, update and fixes (#92264)
  • 52faae3 v16.2.2
  • Additional commits viewable in compare view

Updates react from 19.2.4 to 19.2.5

Release notes

Sourced from react's releases.

19.2.5 (April 8th, 2026)

React Server Components

Commits

Updates react-dom from 19.2.4 to 19.2.5

Release notes

Sourced from react-dom's releases.

19.2.5 (April 8th, 2026)

React Server Components

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): Bump the core-framework group across 1 directory with 5 …
e184dd8 
…updates

Bumps the core-framework group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@supabase/ssr](https://github.com/supabase/ssr) | `0.8.0` | `0.10.2` |
| [@supabase/supabase-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js) | `2.93.1` | `2.103.0` |
| [next](https://github.com/vercel/next.js) | `16.1.5` | `16.2.3` |
| [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.4` | `19.2.5` |
| [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.4` | `19.2.5` |



Updates `@supabase/ssr` from 0.8.0 to 0.10.2
- [Release notes](https://github.com/supabase/ssr/releases)
- [Changelog](https://github.com/supabase/ssr/blob/main/CHANGELOG.md)
- [Commits](supabase/ssr@v0.8.0...v0.10.2)

Updates `@supabase/supabase-js` from 2.93.1 to 2.103.0
- [Release notes](https://github.com/supabase/supabase-js/releases)
- [Changelog](https://github.com/supabase/supabase-js/blob/master/packages/core/supabase-js/CHANGELOG.md)
- [Commits](https://github.com/supabase/supabase-js/commits/v2.103.0/packages/core/supabase-js)

Updates `next` from 16.1.5 to 16.2.3
- [Release notes](https://github.com/vercel/next.js/releases)
- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)
- [Commits](vercel/next.js@v16.1.5...v16.2.3)

Updates `react` from 19.2.4 to 19.2.5
- [Release notes](https://github.com/facebook/react/releases)
- [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/react/commits/v19.2.5/packages/react)

Updates `react-dom` from 19.2.4 to 19.2.5
- [Release notes](https://github.com/facebook/react/releases)
- [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md)
- [Commits](https://github.com/facebook/react/commits/v19.2.5/packages/react-dom)

---
updated-dependencies:
- dependency-name: "@supabase/ssr"
  dependency-version: 0.10.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: core-framework
- dependency-name: "@supabase/supabase-js"
  dependency-version: 2.103.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: core-framework
- dependency-name: next
  dependency-version: 16.2.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: core-framework
- dependency-name: react
  dependency-version: 19.2.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: core-framework
- dependency-name: react-dom
  dependency-version: 19.2.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: core-framework
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 13, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants