Bump the npm_and_yarn group across 2 directories with 4 updates

[dependabot]

Bumps the npm_and_yarn group with 4 updates in the / directory: @nestjs/common, next, cross-spawn and nanoid.
Bumps the npm_and_yarn group with 1 update in the /apps/frontend directory: next.

Updates @nestjs/common from 10.3.8 to 10.4.16

Release notes

Sourced from @​nestjs/common's releases.

v10.4.16

What's Changed

• fix(common): introduce magic file type validator to nestjs common by @​Chathula in nestjs/nest#14948

Full Changelog: nestjs/nest@v10.4.15...v10.4.16

v10.4.15 (2024-12-09)

Dependencies

• platform-express
  • #14282 fix(deps): update dependency express to v4.21.2 (@​renovate[bot])

v10.4.13 (2024-12-03)

Bug fixes

• common
  • #14256 chore(common): Add type declaration for RawBody decorator with pipes (@​sapenlei)

Dependencies

• #14257 fix(deps): update dependency @​fastify/static to v7.0.4 (@​renovate[bot])
• #14258 fix(deps): update dependency @​nestjs/sequelize to v10.0.1 (@​renovate[bot])
• #14249 chore(deps): bump @​apollo/gateway from 2.4.8 to 2.8.5 in /sample/32-graphql-federation-schema-first/users-application (@​dependabot[bot])
• #14250 chore(deps): update jest monorepo (@​renovate[bot])
• #14245 chore(deps): update dependency mqtt to v5.10.3 (@​renovate[bot])
• #14247 fix(deps): update nest monorepo to v10.4.12 (@​renovate[bot])
• #14251 chore(deps-dev): bump graphql-tools from 9.0.3 to 9.0.5 (@​dependabot[bot])
• #14246 chore(deps): update nest monorepo (@​renovate[bot])

Committers: 3

• Kamil Mysliwiec (@​kamilmysliwiec)
• Micael Levi L. Cavalcante (@​micalevisk)
• sapenlei (@​sapenlei)

v10.4.12 (2024-11-29)

Bug fixes

• common
  • #14241 fix(common): enforce string type in validationpipe (@​LhonRafaat)

Dependencies

• Other
  • #14243 chore(deps): update dependency @​types/node to v20.17.9 (@​renovate[bot])
  • #14240 chore(deps): update dependency @​types/multer to v1.4.12 (@​renovate[bot])
  • #14239 chore(deps): update dependency @​types/chai to v4.3.20 (@​renovate[bot])
  • #14237 chore(deps): update confluentinc/cp-zookeeper docker tag to v7.7.2 (@​renovate[bot])
  • #14236 chore(deps): update confluentinc/cp-kafka docker tag to v7.7.2 (@​renovate[bot])
  • #12253 fix(deps): update apollo graphql packages (@​renovate[bot])
  • #14235 chore(deps-dev): bump @​commitlint/config-angular from 19.5.0 to 19.6.0 (@​dependabot[bot])
  • #14233 chore(deps): update nest monorepo (@​renovate[bot])

... (truncated)

Commits

• 6c8aec6 chore(@​nestjs) publish v10.4.16 release
• 2b9e132 chore: update outdated tests, make file-type optional
• cb0d650 chore: remove duplicate packages
• 6196ab2 Merge branch 'Chathula-fix-nestjs-common-mime-validator'
• 0ac7959 chore: minor tweaks
• 312a54a Update packages/common/pipes/file/file-type.validator.ts
• a28fc03 refactor(common): move back file type validator options type
• 07b4b38 refactor(common): move file-type package to peer dependencies
• 0b7af8a refactor(common): refactor code to use simple eval
• 6953b7a fix(common): used eval import
• Additional commits viewable in compare view

Updates next from 14.2.13 to 14.2.32

Commits

• 89ee561 v14.2.32
• 6a974ad [backport v14]: fix router handling when setting a location response header (...
• 55f7662 v14.2.31
• 5dd68a5 [backport v14]: fix(next/image): improve and simplify detect-content-type (#8...
• bcc7c65 [backport v14]: fix(next/image): fix image-optimizer.ts headers (#82114) (#82...
• 243072b v14.2.30
• f523d4a [backport]: config.allowedDevOrigins (#80410)
• ca92115 v14.2.29
• ec9ee87 Only share incremental cache for edge in next start (#79389)
• e65628a v14.2.28
• Additional commits viewable in compare view

Updates cross-spawn from 7.0.3 to 7.0.6

Changelog

Sourced from cross-spawn's changelog.

7.0.6 (2024-11-18)

Bug Fixes

• update cross-spawn version to 7.0.5 in package-lock.json (f700743)

7.0.5 (2024-11-07)

Bug Fixes

• fix escaping bug introduced by backtracking (640d391)

7.0.4 (2024-11-07)

Bug Fixes

• disable regexp backtracking (#160) (5ff3a07)

Commits

• 77cd97f chore(release): 7.0.6
• 6717de4 chore: upgrade standard-version
• f700743 fix: update cross-spawn version to 7.0.5 in package-lock.json
• 9a7e3b2 chore: fix build status badge
• 0852683 chore(release): 7.0.5
• 640d391 fix: fix escaping bug introduced by backtracking
• bff0c87 chore: remove codecov
• a7c6abc chore: replace travis with github workflows
• 9b9246e chore(release): 7.0.4
• 5ff3a07 fix: disable regexp backtracking (#160)
• Additional commits viewable in compare view

Updates nanoid from 3.3.7 to 3.3.11

Release notes

Sourced from nanoid's releases.

3.3.11

• Fixed React Native support.

3.3.10

• Fixed React Native support (by @​steida).

3.3.9

• Reduced npm package size.

Changelog

Sourced from nanoid's changelog.

3.3.11

• Fixed React Native support.

3.3.10

• Fixed React Native support (by @​steida).

3.3.9

• Reduced npm package size.

3.3.8

• Fixed a way to break Nano ID by passing non-integer size (by @​myndzi).

Commits

• 37289ce Release 3.3.11 version
• 23690b7 Fix CI
• c147962 Fix RN support
• a83734e Move to manually ESM/CJS dual package
• bb12e8a Release 3.3.10 version
• 8f44264 Fix Expo support
• adf9b0c Release 3.3.9 version
• 1c6f088 Remove dev file from npm package
• 3044cd5 Release 3.3.8 version
• 4fe3495 Update size limit
• Additional commits viewable in compare view

Updates next from 14.2.13 to 14.2.32

Commits

• 89ee561 v14.2.32
• 6a974ad [backport v14]: fix router handling when setting a location response header (...
• 55f7662 v14.2.31
• 5dd68a5 [backport v14]: fix(next/image): improve and simplify detect-content-type (#8...
• bcc7c65 [backport v14]: fix(next/image): fix image-optimizer.ts headers (#82114) (#82...
• 243072b v14.2.30
• f523d4a [backport]: config.allowedDevOrigins (#80410)
• ca92115 v14.2.29
• ec9ee87 Only share incremental cache for edge in next start (#79389)
• e65628a v14.2.28
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Comments	Updated (UTC)
mmmk-web-frontend	Ready	Preview	Comment	Dec 8, 2025 0:25am