chore(deps): bump the minor-and-patch group across 1 directory with 23 updates by dependabot[bot] · Pull Request #32 · bergaman9/bergaman-dev

dependabot · 2026-01-28T18:32:52Z

Bumps the minor-and-patch group with 23 updates in the / directory:

Package	From	To
@vercel/analytics	`1.5.0`	`1.6.1`
axios	`1.10.0`	`1.13.4`
bcryptjs	`3.0.2`	`3.0.3`
cors	`2.8.5`	`2.8.6`
critters	`0.0.23`	`0.0.25`
csstype	`3.1.3`	`3.2.3`
dotenv	`16.5.0`	`16.6.1`
express-rate-limit	`7.5.0`	`7.5.1`
jose	`6.0.11`	`6.1.3`
mongodb	`6.17.0`	`6.21.0`
mongoose	`8.15.2`	`8.22.0`
nodemailer	`7.0.3`	`7.0.13`
react-hot-toast	`2.5.2`	`2.6.0`
react-icons	`5.3.0`	`5.5.0`
@semantic-release/github	`11.0.3`	`11.0.6`
@semantic-release/npm	`12.0.1`	`12.0.2`
@semantic-release/release-notes-generator	`14.0.3`	`14.1.0`
conventional-changelog-conventionalcommits	`9.0.0`	`9.1.0`
eslint	`9.29.0`	`9.39.2`
eslint-config-next	`15.3.3`	`15.5.10`
postcss	`8.4.47`	`8.5.6`
semantic-release	`24.2.5`	`24.2.9`
tailwindcss	`3.4.14`	`3.4.19`

Updates @vercel/analytics from 1.5.0 to 1.6.1

Release notes

Sourced from @vercel/analytics's releases.

1.6.1

What's Changed

fix(nuxt): remove the module as breaking change by @atinux in vercel/analytics#181

Full Changelog: vercel/analytics@1.6.0...1.6.1

1.6.0

What's Changed

feat(nuxt): Add support for injectAnalytics() and Nuxt module by @atinux in vercel/analytics#178

Add undefined to AllowedPropertyValues type by @timolins in vercel/analytics#174

New Contributors

@atinux made their first contribution in vercel/analytics#178

Full Changelog: vercel/analytics@1.5.0...1.6.0

Commits

0028584 fix(nuxt): remove the module as breaking change (#181)
182d185 chore: prepare release (#180)
4f2b656 Add undefined to AllowedPropertyValues type (#174)
9a406c4 feat(nuxt): Add support for injectAnalytics() and Nuxt module (#178)
See full diff in compare view

Updates axios from 1.10.0 to 1.13.4

Release notes

Sourced from axios's releases.

v1.13.4

Overview

The release addresses issues discovered in v1.13.3 and includes significant CI/CD improvements.

Full Changelog: v1.13.3...v1.13.4

What's New in v1.13.4

Bug Fixes

fix: issues with version 1.13.3 (#7352) (ee90dfc)

Fixed issues discovered in v1.13.3 release

Cleaned up interceptor test files

Improved workflow configurations

Infrastructure & CI/CD

refactor: ci and build (#7340) (8ff6c19)

Major refactoring of CI/CD workflows

Consolidated workflow files for better maintainability

Added mise configuration for the development environment

Improved sponsor block update automation

Enhanced issue and PR templates

Added automatic release notes generation

Implemented workflow cancellation for concurrent runs

chore: codegen and some updates to workflows (76cf77b)

Code generation improvements

Workflow optimisations

Migration Notes

Breaking Changes

None in this release.

Deprecations

None in this release.

Contributors

Thank you to all contributors who made this release possible! Special thanks to:

jasonsaayman - Release management and CI/CD improvements

Release v1.13.3

Release notes:

Bug Fixes

... (truncated)

Changelog

Sourced from axios's changelog.

Changelog

1.13.3 (2026-01-20)

Bug Fixes

http2: Use port 443 for HTTPS connections by default. (#7256) (d7e6065)

interceptor: handle the error in the same interceptor (#6269) (5945e40)

main field in package.json should correspond to cjs artifacts (#5756) (7373fbf)

package.json: add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (#5754) (b89217e)

silentJSONParsing=false should throw on invalid JSON (#7253) (#7257) (7d19335)

turn AxiosError into a native error (#5394) (#5558) (1c6a86d)

types: add handlers to AxiosInterceptorManager interface (#5551) (8d1271b)

types: restore AxiosError.cause type from unknown to Error (#7327) (d8233d9)

unclear error message is thrown when specifying an empty proxy authorization (#6314) (6ef867e)

Features

add undefined as a value in AxiosRequestConfig (#5560) (095033c)

add automatic minor and patch upgrades to dependabot (#6053) (65a7584)

add Node.js coverage script using c8 (closes #7289) (#7294) (ec9d94e)

added copilot instructions (3f83143)

compatibility with frozen prototypes (#6265) (860e033)

enhance pipeFileToResponse with error handling (#7169) (88d7884)

types: Intellisense for string literals in a widened union (#6134) (f73474d), closes microsoft/TypeScript#33471

Reverts

Revert "fix: silentJSONParsing=false should throw on invalid JSON (#7253) (#7…" (#7298) (a4230f5), closes #7253 #7 #7298

deps: bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (#7334) (2d6ad5e)

Contributors to this release

Ashvin Tiwari

Nikunj Mochi

Anchal Singh

jasonsaayman

Julian Dax

Akash Dhar Dubey

Madhumita

Tackoil

Justin Dhillon

Rudransh

WuMingDao

codenomnom

Nandan Acharya

Eric Dubé

Tibor Pilz

Gabriel Quaresma

Turadg Aleahmad

... (truncated)

Commits

9336cf9 chore(release): prepare release 1.13.4 (#7353)
ee90dfc fix: issues with version 1.13.3 (#7352)
af4f6d9 fix: release branch yml
253e3ad fix: all merge configs
8ff6c19 refactor: ci and build (#7340)
ab06109 chore(release): v1.13.3 (#7335)
2d6ad5e revert(deps): bump peter-evans/create-pull-request from 7 to 8 in the github-...
cb49a6f chore(sponsor): update sponsor block (#7330)
d8233d9 fix(types): restore AxiosError.cause type from unknown to Error (#7327)
5945e40 fix(interceptor): handle the error in the same interceptor (#6269)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for axios since your current version.

Updates bcryptjs from 3.0.2 to 3.0.3

Release notes

Sourced from bcryptjs's releases.

v3.0.3

Bug fixes

Always yield to event loop before nextTick for async versions (#164) (1211e9a2213e0b3ee232a204b3ce899beebce31a)

Commits

1211e9a fix: Always yield to event loop before nextTick for async versions (#164)
See full diff in compare view

Updates cors from 2.8.5 to 2.8.6

Release notes

Sourced from cors's releases.

v2.8.6

What's Changed

Build: Node.js@12.16 and Node.js.13.12 by @smondal in expressjs/cors#189

Update README.md for origin function callback parameters by @dstudzinski in expressjs/cors#180

Suggest passing false for disallowed domains, not erroring by @shackpank in expressjs/cors#175

Changed the term whitelist to allowlist in Documentation by @jkasun in expressjs/cors#200

Fix typo in README by @alex-grover in expressjs/cors#207

Added new link & website in the README by @manjunath00 in expressjs/cors#269

Fix functions call with extra parameter by @LuisEGR in expressjs/cors#245

🐛 Fix readme status badge by @homersimpsons in expressjs/cors#306

chore: add support for OSSF scorecard reporting by @inigomarquinez in expressjs/cors#321

ci: fix errors in ci github action for node 8 by @inigomarquinez in expressjs/cors#322

test: improved test robustness by @Alex-GF in expressjs/cors#320

chore: upgrade scorecard workflow pinned action versions by @carpasse in expressjs/cors#341

ci: add CodeQL (SAST) by @bjohansebas in expressjs/cors#340

docs: remove broken link to demo site by @dpopp07 in expressjs/cors#344

OSSF Scorecard recommendations by @UlisesGascon in expressjs/cors#350

build(deps): bump github/codeql-action from 3.24.7 to 3.28.19 by @dependabot[bot] in expressjs/cors#351

build(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 by @dependabot[bot] in expressjs/cors#353

build(deps): bump actions/checkout from 4.1.1 to 4.2.2 by @dependabot[bot] in expressjs/cors#354

build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.2 by @dependabot[bot] in expressjs/cors#355

build(deps-dev): bump express from 4.17.1 to 4.21.2 by @dependabot[bot] in expressjs/cors#356

build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.2 by @dependabot[bot] in expressjs/cors#352

build(deps-dev): bump mocha from 9.1.1 to 9.2.2 by @dependabot[bot] in expressjs/cors#358

update the docs for per request config by @jonchurch in expressjs/cors#338

(fix): readme updated for #271 origin option for * by @dhananjaysa92 in expressjs/cors#289

ci: upgrade Node versions by @UlisesGascon in expressjs/cors#359

chore: add funding to package.json by @bjohansebas in expressjs/cors#363

build(deps): bump github/codeql-action from 3.28.19 to 4.31.2 by @dependabot[bot] in expressjs/cors#371

build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by @dependabot[bot] in expressjs/cors#370

docs: Cleanup README by @efekrskl in expressjs/cors#374

chore: add node v25 by @imangas in expressjs/cors#375

Extend CI test matrix by @imangas in expressjs/cors#376

docs: simplify code examples with header comments by @jonchurch in expressjs/cors#386

docs: tweak intro, add note w/ browser enforcement, FAQ by @jonchurch in expressjs/cors#385

chore: remove HISTORY.md and nonexistent CONTRIBUTING.md from tarball by @Phillip9587 in expressjs/cors#388

Release: 2.8.6 by @UlisesGascon in expressjs/cors#390

New Contributors

@smondal made their first contribution in expressjs/cors#189

@dstudzinski made their first contribution in expressjs/cors#180

@shackpank made their first contribution in expressjs/cors#175

@jkasun made their first contribution in expressjs/cors#200

@alex-grover made their first contribution in expressjs/cors#207

@manjunath00 made their first contribution in expressjs/cors#269

@LuisEGR made their first contribution in expressjs/cors#245

@homersimpsons made their first contribution in expressjs/cors#306

@inigomarquinez made their first contribution in expressjs/cors#321

@Alex-GF made their first contribution in expressjs/cors#320

@carpasse made their first contribution in expressjs/cors#341

... (truncated)

Changelog

Sourced from cors's changelog.

2.8.6 / 2026-01-22

Improve documentation (API, context, examples...)

Remove additional markdown files from tarball

Commits

f00a8c1 2.8.6 (#390)
848e2bd chore: remove HISTORY.md and nonexistent CONTRIBUTING.md from tarball (#388)
cf8947e docs: tweak intro, add note w/ browser enforcement, FAQ (#385)
bbf62a5 docs: simplify code examples with header comments (#386)
f442e77 Extend CI test matrix (#376)
d5cf6cd ci: add support for node@25 (#375)
7e6f7ee docs: revamp content (#374)
b25644c build(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 (#370)
f881e91 build(deps): bump github/codeql-action from 3.28.19 to 4.31.2 (#371)
9a9a760 chore: add funding to package.json (#363)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ulisesgascon, a new releaser for cors since your current version.

Updates critters from 0.0.23 to 0.0.25

Commits

7e062c1 refactor: replace process.hrtime with Date.now (#176)
05f5a48 0.0.24 (#167)
86f6099 fix: do not override media and onload attributes in noscript (#166)
See full diff in compare view

Updates csstype from 3.1.3 to 3.2.3

Commits

ecfa619 v3.2.3
f2162b5 Remove Npm lock files from tests and fixtures
b78a229 Fix security flaws
3b73450 Resolve syntaxes with comma separator and prevent reoccurring data types by s...
be03ec8 Rename Release It config
286abd8 Release 3.2.2
02e9251 Add Release It script
8408a59 Ignore comma in CSS syntax for now
c9051e1 v3.2.1
c3a6cc1 Revert type module and rename .js -> .mjs instead
Additional commits viewable in compare view

Updates dotenv from 16.5.0 to 16.6.1

Changelog

Sourced from dotenv's changelog.

16.6.1 (2025-06-27)

Changed

Default quiet to true – hiding the runtime log message (#874)

NOTICE: 17.0.0 will be released with quiet defaulting to false. Use config({ quiet: true }) to suppress.

And check out the new dotenvx. As coding workflows evolve and agents increasingly handle secrets, encrypted .env files offer a much safer way to deploy both agents and code together with secure secrets. Simply switch require('dotenv').config() for require('@dotenvx/dotenvx').config().

16.6.0 (2025-06-26)

Added

Default log helpful message [dotenv@16.6.0] injecting env (1) from .env (#870)

Use { quiet: true } to suppress

Aligns dotenv more closely with dotenvx.

Commits

076ba3b 16.6.1
8867fe0 changelog 🪵
424c32d Merge pull request #874 from motdotla/default-quiet-to-true
5270faf changelog 🪵
86ce001 force failure of path.relative in test
e6799e6 add tests
ec72534 add to test coverage
c886084 send coverage to text as well
a791032 add test
fa67c02 test quiet: false
Additional commits viewable in compare view

Updates express-rate-limit from 7.5.0 to 7.5.1

Release notes

Sourced from express-rate-limit's releases.

v7.5.1

Changed

Narrowed type of standardHeaders from string to just the supported values via a TypeScript const assertion (#506)

You can view the full changelog here.

Commits

f228717 7.5.1
aede183 7.5.1 changelog
62bfcae fix: type of DraftHeadersVersion (#506)
e2d7fa0 docs: add note about ietf rate limit headers draft 9
2b84976 fix: allow using express v4.11+, since v5 is out of beta
89ab85a build(deps): bump tar-fs, @babel/code-frame (#501)
60530e1 chore: fix lint issues
98bf0a3 build(deps): bump tar-fs (#499)
78f42a6 build(deps-dev): bump axios from 1.7.5 to 1.9.0 (#498)
6a6e699 Add unit test for resetKey method in MemoryStore (#496)
Additional commits viewable in compare view

Updates jose from 6.0.11 to 6.1.3

Release notes

Sourced from jose's releases.

v6.1.3

Refactor

avoid export * as for google closure's compiler sake (6303d98), closes #832

v6.1.2

Refactor

fallback to checking instanceof for CryptoKey (901cd90), closes #765 #803 #821 #827 #828

v6.1.1

Documentation

add link to RFC9864 (767edde)

link to ML-DSA for JOSE (ed4252c)

remove mention of Edge Runtime from the readme (94fdde7)

update README.md (25098ef)

Refactor

eliminate named exports in the source code (f6ae30d)

expose setKeyManagementParameters also on a GeneralEncrypt Recipient (16e6b23)

faster path for symmetric key checks (a44c2ec)

improve en/decoding overheads (daee426)

v6.1.0

Features

support AKP JWKs in calculateJwkThumbprint and calculateJwkThumbprintUri (cf2092a)

support for the ML-DSA PQC Algorithm Identifiers (25ddce4)

v6.0.13

Refactor

more readability in ecdhes.ts (84da9de)

update asn1.ts helpers (b4f8fb3)

v6.0.12

Documentation

add known caveats to customFetch (02e1f1e)

mention the apu/apv parameter names in setKeyManagementParameters (6274d5a)

update compact setKeyManagementParameters (2f44381)

use GitHub Flavored Markdown for notes and warnings (f6b4ffc)

Refactor

createPublicKey is not a constructor (61ded78)

... (truncated)

Changelog

Sourced from jose's changelog.

6.1.3 (2025-12-02)

Refactor

avoid export * as for google closure's compiler sake (6303d98), closes #832

6.1.2 (2025-11-15)

Refactor

fallback to checking instanceof for CryptoKey (901cd90), closes #765 #803 #821 #827 #828

6.1.1 (2025-11-09)

Documentation

add link to RFC9864 (767edde)

link to ML-DSA for JOSE (ed4252c)

remove mention of Edge Runtime from the readme (94fdde7)

update README.md (25098ef)

Refactor

eliminate named exports in the source code (f6ae30d)

expose setKeyManagementParameters also on a GeneralEncrypt Recipient (16e6b23)

faster path for symmetric key checks (a44c2ec)

improve en/decoding overheads (daee426)

6.1.0 (2025-08-27)

Features

support AKP JWKs in calculateJwkThumbprint and calculateJwkThumbprintUri (cf2092a)

support for the ML-DSA PQC Algorithm Identifiers (25ddce4)

6.0.13 (2025-08-21)

Refactor

more readability in ecdhes.ts (84da9de)

update asn1.ts helpers (b4f8fb3)

6.0.12 (2025-07-15)

... (truncated)

Commits

ebb8774 chore(release): 6.1.3
6303d98 refactor: avoid export * as for google closure's compiler sake
39c8805 chore: bump packages
cf5726e chore: update error message
0154775 chore: update threat model
d015cdf chore: add a threat model
c5e285e chore: bump packages
d681315 chore: bump packages
4ae1005 chore(deps-dev): bump glob from 11.0.3 to 11.1.0 (#831)
aaedc25 chore(deps-dev): bump js-yaml from 3.14.1 to 3.14.2 (#830)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for jose since your current version.

Updates mongodb from 6.17.0 to 6.21.0

Release notes

Sourced from mongodb's releases.

v6.21.0

6.21.0 (2025-11-05)

The MongoDB Node.js team is pleased to announce version 6.21.0 of the mongodb package!

Release Notes

Deprecated items to be removed in 7.0.0

The following items have been deprecated and will be removed in 7.0.0:
MongoCredentials.authMechanismProperties.AWS_SESSION_TOKEN // URI & client options for AWS variables will no longer be respected
CommandOptions.noResponse // Unused
ConnectionOptions.cancellationToken // Unused
CursorStreamOptions // Only option, transform, removed in favor of Stream#map
Features

NODE-7230: add deprecations of items to be removed in v7 (#4774) (5104c0f)

Documentation

Reference

API

Changelog

We invite you to try the mongodb library immediately, and report any issues to the NODE project.

v6.20.0

6.20.0 (2025-09-17)

The MongoDB Node.js team is pleased to announce version 6.20.0 of the mongodb package!

Release Notes

Collection and Db objects now provide references to their Db and MongoClient
import { MongoClient } from 'mongodb';
const client = new MongoClient(process.env.MONGODB_URI);
const db = client.db('test');
assert(db.client === client); // returns the MongoClient associated with the Db object
const collection = db.collection('test');
assert(collection.db === db); // returns the Db associated with the Collection object
Hint is supported with unacknowledged writes for delete, update and findAndModify commands on servers that support hint

... (truncated)

Changelog

Sourced from mongodb's changelog.

6.21.0 (2025-11-05)

Features

NODE-7230: add deprecations of items to be removed in v7 (#4774) (5104c0f)

6.20.0 (2025-09-17)

Features

NODE-6883: allow rawData option on time series collections (#4642) (0fa3cd4)

NODE-7125: add db and client properties to collection and database objects (#4640) (3469f86)

NODE-7134: allow hint with unacknowledged writes for delete, update and findAndModify commands (#4647) (82d6ce6)

NODE-7139: remove pre-4.2 logic and deprecate dead code (#4657) (14303bc)

NODE-7140: deprecate driver info options (#4654) (b813c85)

NODE-7157: deprecate retryWrites in CommandOperationOptions (#4661) (620972d)

Bug Fixes

NODE-4763: cache resumeToken in ChangeStream.tryNext() (#4636) (8331a93)

NODE-6858: treat MongoServerSelectionError as a resumable error for Change Streams (#4653) (c6d64e7)

NODE-7138: prevent duplicate metadata from being appended to handshake metadata (#4651) (05c230c)

6.19.0 (2025-08-26)

Features

NODE-4179: allow secureContext in KMS TLS options (#4578) (0ea6eaa)

NODE-6472: findOne and find no longer keep open cursors (#4580) (be7f808)

NODE-7020: remove ping on connect (#4607) (3d296b7)

NODE-7059, NODE-7008: add support for text queries for QE string fields (#4597) (e4492f3)

6.18.0 (2025-07-22)

Features

NODE-5055: Add databaseName property to command monitoring events (#4586) (3faf0c9)

NODE-6865: deprecate transaction getters (#4567) (da46aea)

NODE-6991: deprecate unintentionally public client metadata types (#4566) (ca6554b)

NODE-7009: add client metadata on demand (#4574) (b9636ee)

NODE-7053: deprecate noResponse option (#4589) (1115319)

Bug Fixes

... (truncated)

Commits

9e1d538 chore(6.x): release 6.21.0 (#4777)
aa5b165 test: retry tls tests (#4778)
0e97efc chore: move release action (#4776)
5104c0f feat(NODE-7230): add deprecations of items to be removed in v7 (#4774)
6f78f5a chore: name 6.x release action release-6.x (#4775)
afc2c3e chore: create 6.x release action (#4771)
0e89311 docs: docs for v6.20.0 release (#4665)
477140e chore(main): release 6.20.0 (#4641)
7c485ef docs: generate docs from latest main [skip-ci] (#4595)
05c230c fix(NODE-7138): prevent duplicate metadata from being appended to handshake m...
Additional commits viewable in compare view

Updates mongoose from 8.15.2 to 8.22.0

Release notes

Sourced from mongoose's releases.

8.22.0 / 2026-01-27

feat(model): allow passing strict option to hydrate() #15944 #15940

8.21.1

fix(clone): fix parent doc for map subdocuments and array subdocuments #15958 AbdelrahmanHafez

fix(document): when cloning a doc with subdocs, make sure the subdocs parent is the cloned doc #15904 #15901

fix: respect currentTime schema option in bulkWrite updates #15976 sderrow

types(models): support M...
Description has been truncated

vercel · 2026-01-28T18:32:55Z

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Review	Updated (UTC)
bergaman-dev	Ready	Preview, Comment	Jan 28, 2026 9:21pm

…3 updates Bumps the minor-and-patch group with 23 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@vercel/analytics](https://github.com/vercel/analytics/tree/HEAD/packages/web) | `1.5.0` | `1.6.1` | | [axios](https://github.com/axios/axios) | `1.10.0` | `1.13.4` | | [bcryptjs](https://github.com/dcodeIO/bcrypt.js) | `3.0.2` | `3.0.3` | | [cors](https://github.com/expressjs/cors) | `2.8.5` | `2.8.6` | | [critters](https://github.com/GoogleChromeLabs/critters/tree/HEAD/packages/critters) | `0.0.23` | `0.0.25` | | [csstype](https://github.com/frenic/csstype) | `3.1.3` | `3.2.3` | | [dotenv](https://github.com/motdotla/dotenv) | `16.5.0` | `16.6.1` | | [express-rate-limit](https://github.com/express-rate-limit/express-rate-limit) | `7.5.0` | `7.5.1` | | [jose](https://github.com/panva/jose) | `6.0.11` | `6.1.3` | | [mongodb](https://github.com/mongodb/node-mongodb-native) | `6.17.0` | `6.21.0` | | [mongoose](https://github.com/Automattic/mongoose) | `8.15.2` | `8.22.0` | | [nodemailer](https://github.com/nodemailer/nodemailer) | `7.0.3` | `7.0.13` | | [react-hot-toast](https://github.com/timolins/react-hot-toast) | `2.5.2` | `2.6.0` | | [react-icons](https://github.com/react-icons/react-icons) | `5.3.0` | `5.5.0` | | [@semantic-release/github](https://github.com/semantic-release/github) | `11.0.3` | `11.0.6` | | [@semantic-release/npm](https://github.com/semantic-release/npm) | `12.0.1` | `12.0.2` | | [@semantic-release/release-notes-generator](https://github.com/semantic-release/release-notes-generator) | `14.0.3` | `14.1.0` | | [conventional-changelog-conventionalcommits](https://github.com/conventional-changelog/conventional-changelog/tree/HEAD/packages/conventional-changelog-conventionalcommits) | `9.0.0` | `9.1.0` | | [eslint](https://github.com/eslint/eslint) | `9.29.0` | `9.39.2` | | [eslint-config-next](https://github.com/vercel/next.js/tree/HEAD/packages/eslint-config-next) | `15.3.3` | `15.5.10` | | [postcss](https://github.com/postcss/postcss) | `8.4.47` | `8.5.6` | | [semantic-release](https://github.com/semantic-release/semantic-release) | `24.2.5` | `24.2.9` | | [tailwindcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss) | `3.4.14` | `3.4.19` | Updates `@vercel/analytics` from 1.5.0 to 1.6.1 - [Release notes](https://github.com/vercel/analytics/releases) - [Commits](https://github.com/vercel/analytics/commits/1.6.1/packages/web) Updates `axios` from 1.10.0 to 1.13.4 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.10.0...v1.13.4) Updates `bcryptjs` from 3.0.2 to 3.0.3 - [Release notes](https://github.com/dcodeIO/bcrypt.js/releases) - [Commits](dcodeIO/bcrypt.js@v3.0.2...v3.0.3) Updates `cors` from 2.8.5 to 2.8.6 - [Release notes](https://github.com/expressjs/cors/releases) - [Changelog](https://github.com/expressjs/cors/blob/master/HISTORY.md) - [Commits](expressjs/cors@v2.8.5...v2.8.6) Updates `critters` from 0.0.23 to 0.0.25 - [Release notes](https://github.com/GoogleChromeLabs/critters/releases) - [Changelog](https://github.com/GoogleChromeLabs/critters/blob/main/CHANGELOG.md) - [Commits](https://github.com/GoogleChromeLabs/critters/commits/0.0.25/packages/critters) Updates `csstype` from 3.1.3 to 3.2.3 - [Release notes](https://github.com/frenic/csstype/releases) - [Commits](frenic/csstype@v3.1.3...v3.2.3) Updates `dotenv` from 16.5.0 to 16.6.1 - [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md) - [Commits](motdotla/dotenv@v16.5.0...v16.6.1) Updates `express-rate-limit` from 7.5.0 to 7.5.1 - [Release notes](https://github.com/express-rate-limit/express-rate-limit/releases) - [Commits](express-rate-limit/express-rate-limit@v7.5.0...v7.5.1) Updates `jose` from 6.0.11 to 6.1.3 - [Release notes](https://github.com/panva/jose/releases) - [Changelog](https://github.com/panva/jose/blob/main/CHANGELOG.md) - [Commits](panva/jose@v6.0.11...v6.1.3) Updates `mongodb` from 6.17.0 to 6.21.0 - [Release notes](https://github.com/mongodb/node-mongodb-native/releases) - [Changelog](https://github.com/mongodb/node-mongodb-native/blob/v6.21.0/HISTORY.md) - [Commits](mongodb/node-mongodb-native@v6.17.0...v6.21.0) Updates `mongoose` from 8.15.2 to 8.22.0 - [Release notes](https://github.com/Automattic/mongoose/releases) - [Changelog](https://github.com/Automattic/mongoose/blob/8.22.0/CHANGELOG.md) - [Commits](Automattic/mongoose@8.15.2...8.22.0) Updates `nodemailer` from 7.0.3 to 7.0.13 - [Release notes](https://github.com/nodemailer/nodemailer/releases) - [Changelog](https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md) - [Commits](nodemailer/nodemailer@v7.0.3...v7.0.13) Updates `react-hot-toast` from 2.5.2 to 2.6.0 - [Release notes](https://github.com/timolins/react-hot-toast/releases) - [Commits](timolins/react-hot-toast@v2.5.2...v2.6.0) Updates `react-icons` from 5.3.0 to 5.5.0 - [Release notes](https://github.com/react-icons/react-icons/releases) - [Commits](react-icons/react-icons@v5.3.0...v5.5.0) Updates `@semantic-release/github` from 11.0.3 to 11.0.6 - [Release notes](https://github.com/semantic-release/github/releases) - [Commits](semantic-release/github@v11.0.3...v11.0.6) Updates `@semantic-release/npm` from 12.0.1 to 12.0.2 - [Release notes](https://github.com/semantic-release/npm/releases) - [Commits](semantic-release/npm@v12.0.1...v12.0.2) Updates `@semantic-release/release-notes-generator` from 14.0.3 to 14.1.0 - [Release notes](https://github.com/semantic-release/release-notes-generator/releases) - [Commits](semantic-release/release-notes-generator@v14.0.3...v14.1.0) Updates `conventional-changelog-conventionalcommits` from 9.0.0 to 9.1.0 - [Release notes](https://github.com/conventional-changelog/conventional-changelog/releases) - [Changelog](https://github.com/conventional-changelog/conventional-changelog/blob/master/packages/conventional-changelog-conventionalcommits/CHANGELOG.md) - [Commits](https://github.com/conventional-changelog/conventional-changelog/commits/conventional-changelog-conventionalcommits-v9.1.0/packages/conventional-changelog-conventionalcommits) Updates `eslint` from 9.29.0 to 9.39.2 - [Release notes](https://github.com/eslint/eslint/releases) - [Commits](eslint/eslint@v9.29.0...v9.39.2) Updates `eslint-config-next` from 15.3.3 to 15.5.10 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](https://github.com/vercel/next.js/commits/v15.5.10/packages/eslint-config-next) Updates `postcss` from 8.4.47 to 8.5.6 - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](postcss/postcss@8.4.47...8.5.6) Updates `semantic-release` from 24.2.5 to 24.2.9 - [Release notes](https://github.com/semantic-release/semantic-release/releases) - [Commits](semantic-release/semantic-release@v24.2.5...v24.2.9) Updates `tailwindcss` from 3.4.14 to 3.4.19 - [Release notes](https://github.com/tailwindlabs/tailwindcss/releases) - [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/tailwindlabs/tailwindcss/commits/v3.4.19/packages/tailwindcss) --- updated-dependencies: - dependency-name: "@vercel/analytics" dependency-version: 1.6.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: axios dependency-version: 1.13.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: bcryptjs dependency-version: 3.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: cors dependency-version: 2.8.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: critters dependency-version: 0.0.25 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: csstype dependency-version: 3.2.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: dotenv dependency-version: 16.6.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: express-rate-limit dependency-version: 7.5.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: jose dependency-version: 6.1.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: mongodb dependency-version: 6.21.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: mongoose dependency-version: 8.22.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: nodemailer dependency-version: 7.0.13 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: react-hot-toast dependency-version: 2.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: react-icons dependency-version: 5.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@semantic-release/github" dependency-version: 11.0.6 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@semantic-release/npm" dependency-version: 12.0.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: "@semantic-release/release-notes-generator" dependency-version: 14.1.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: conventional-changelog-conventionalcommits dependency-version: 9.1.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: eslint dependency-version: 9.39.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: eslint-config-next dependency-version: 15.5.10 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: postcss dependency-version: 8.5.6 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: semantic-release dependency-version: 24.2.9 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: tailwindcss dependency-version: 3.4.19 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: minor-and-patch ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot assigned bergaman9 Jan 28, 2026

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jan 28, 2026

vercel bot had a problem deploying to Preview January 28, 2026 18:33 Failure

dependabot bot force-pushed the dependabot/npm_and_yarn/minor-and-patch-38569739cb branch from b310442 to dc94ccf Compare January 28, 2026 21:20

vercel bot deployed to Preview January 28, 2026 21:21 View deployment

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the minor-and-patch group across 1 directory with 23 updates#32

chore(deps): bump the minor-and-patch group across 1 directory with 23 updates#32
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/minor-and-patch-38569739cb

dependabot bot commented on behalf of github Jan 28, 2026 •

edited

Loading

Uh oh!

vercel bot commented Jan 28, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Jan 28, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

1.6.1

What's Changed

1.6.0

What's Changed

New Contributors

v1.13.4

Overview

What's New in v1.13.4

Bug Fixes

Infrastructure & CI/CD

Migration Notes

Breaking Changes

Deprecations

Contributors

Release v1.13.3

Release notes:

Bug Fixes

Changelog

1.13.3 (2026-01-20)

Bug Fixes

Features

Reverts

Contributors to this release

v3.0.3

Bug fixes

v2.8.6

What's Changed

New Contributors

2.8.6 / 2026-01-22

16.6.1 (2025-06-27)

Changed

16.6.0 (2025-06-26)

Added

v7.5.1

Changed

v6.1.3

Refactor

v6.1.2

Refactor

v6.1.1

Documentation

Refactor

v6.1.0

Features

v6.0.13

Refactor

v6.0.12

Documentation

Refactor

6.1.3 (2025-12-02)

Refactor

6.1.2 (2025-11-15)

Refactor

6.1.1 (2025-11-09)

Documentation

Refactor

6.1.0 (2025-08-27)

Features

6.0.13 (2025-08-21)

Refactor

6.0.12 (2025-07-15)

v6.21.0

6.21.0 (2025-11-05)

Release Notes

Deprecated items to be removed in 7.0.0

Features

Documentation

v6.20.0

6.20.0 (2025-09-17)

Release Notes

Collection and Db objects now provide references to their Db and MongoClient

Hint is supported with unacknowledged writes for delete, update and findAndModify commands on servers that support hint

6.21.0 (2025-11-05)

Features

6.20.0 (2025-09-17)

Features

Bug Fixes

dependabot bot commented on behalf of github Jan 28, 2026 •

edited

Loading

`Collection` and `Db` objects now provide references to their `Db` and `MongoClient`

vercel bot commented Jan 28, 2026 •

edited

Loading