chore(deps): bump the production-dependencies group across 1 directory with 12 updates by dependabot[bot] · Pull Request #50 · sidclawhq/platform

dependabot · 2026-04-27T17:16:55Z

Bumps the production-dependencies group with 12 updates in the / directory:

Package	From	To
@modelcontextprotocol/sdk	`1.27.1`	`1.29.0`
@fastify/swagger-ui	`5.2.5`	`5.2.6`
@prisma/adapter-pg	`7.5.0`	`7.8.0`
@prisma/client	`7.5.0`	`7.8.0`
fastify	`5.8.4`	`5.8.5`
openid-client	`6.8.2`	`6.8.4`
resend	`6.9.4`	`6.12.2`
@xyflow/react	`12.10.1`	`12.10.2`
react	`19.1.0`	`19.2.5`
react-dom	`19.1.0`	`19.2.5`
fumadocs-mdx	`14.2.11`	`14.3.2`
@openai/agents	`0.0.4`	`0.8.5`

Updates @modelcontextprotocol/sdk from 1.27.1 to 1.29.0

Commits

e12cbd7 chore: bump version to 1.29.0 (#1820)
3913fd4 fix(stdio): always set windowsHide on Windows, not just in Electron (#1640)
5608e78 [v1.x backport] Allow servers / clients to advertise extensions in the capabi...
7213816 v1.x #1623 follow up -add missing types to package.json (#1773)
364f38c v1.x npm audit fix (#1780)
c95cc09 Add typings exports (#1623)
ddadaa6 [v1.x] fix: add missing size field to ResourceSchema (#1575)
2a15851 [v1.x] fix: disallow null (infinite) requested TTL (#1339)
13e30f1 fix: treat v1.x as primary branch for npm latest tag (backport #1577) (#1749)
a056569 chore: bump version to 1.28.0 (#1746)
Additional commits viewable in compare view

Updates @fastify/swagger-ui from 5.2.5 to 5.2.6

Commits

56ee372 Bumped v5.2.6
b1eff32 fix: correct corrupted PNG favicon signatures (#269)
5b951e6 ci: add lock-threads workflow (#265)
04a6271 chore(deps-dev): bump swagger-ui-dist from 5.32.0 to 5.32.1 (#264)
ddf5895 chore(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-mana...
c546425 chore(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml (#261)
cd4cee7 chore(deps-dev): bump neostandard from 0.12.2 to 0.13.0 (#260)
043d556 chore(deps-dev): bump c8 from 10.1.3 to 11.0.0 (#259)
4ff5aa5 chore(deps-dev): bump swagger-ui-dist from 5.31.0 to 5.32.0 (#258)
efde3f0 chore(license): standardise license notice (#256)
Additional commits viewable in compare view

Updates @prisma/adapter-pg from 7.5.0 to 7.8.0

Commits

f2ca67e feat: pg statement name generator (#29395)
4131568 fix: set @types/pg to ^8.16.0 (#29390)
33667c3 fix(adapter-pg): handle both quoted/unquoted column names in ColumnNotFound e...
e97b3e0 feat(adapter-pg): accept connection string URL in PrismaPg constructor (#29287)
See full diff in compare view

Updates @prisma/client from 7.5.0 to 7.8.0

Commits

62b44ac chore(deps): update engines to 7.8.0-5.e96eae70cf4ade6a15d7e6064d5b0b4f7d835d...
4104864 feat: add a query plan cache size parameter (#29503)
723ba7b chore(deps): update engines to 7.8.0-4.8c287008617e9b12f313df99e2c821ae61ea9a...
cadbafe chore(deps): update engines to 7.8.0-2.3187e3937290320ba3c7dbd5aa94af67942b44...
f705533 chore(deps): update engines to 7.8.0-1.7b80cc56c645c6e03c7541474e6a7c8d91b70d...
fbab4e8 Fix 29271 (#29303)
6a3c3cc chore: extract parameterization to client-engine-runtime (#29422)
5b420f8 fix(client): prevent caching of createMany queries to avoid cache bloat and p...
30f0af6 feat: dmmf streaming with an E2E test (#29377)
14c3c2e fix: pin E2E typescript to prevent 6 upgrade (#29383)
Additional commits viewable in compare view

Updates fastify from 5.8.4 to 5.8.5

Release notes

Sourced from fastify's releases.

v5.8.5

⚠️ Security Release

This fixes CVE CVE-2026-33806 GHSA-247c-9743-5963.

What's Changed

chore: Fix port parsing by @jsumners in fastify/fastify#6603

chore: upgrade to typescript v6.0.2 by @Tony133 in fastify/fastify#6605

fix: restore trustProxy function for number and string types, add null check for socketAddr by @mcollina in fastify/fastify#6613

ci: reduce cron scheduled workflows from daily/weekly to monthly by @Fdawgs in fastify/fastify#6623

chore: Bump pnpm/action-setup from 4.2.0 to 5.0.0 by @dependabot[bot] in fastify/fastify#6629

chore: Bump markdownlint-cli2 from 0.21.0 to 0.22.0 by @dependabot[bot] in fastify/fastify#6632

chore: Bump borp from 0.21.0 to 1.0.0 by @dependabot[bot] in fastify/fastify#6633

chore: Bump actions/dependency-review-action from 4.8.3 to 4.9.0 by @dependabot[bot] in fastify/fastify#6630

docs(ecosystem): add @pompelmi/fastify-plugin by @SonoTommy in fastify/fastify#6610

New Contributors

@SonoTommy made their first contribution in fastify/fastify#6610

Full Changelog: fastify/fastify@v5.8.4...v5.8.5

Commits

3983cce Bumped v5.8.5
3ce3ae6 Merge commit from fork
b06a196 docs(ecosystem): add @pompelmi/fastify-plugin (#6610)
909c5d5 chore: Bump actions/dependency-review-action from 4.8.3 to 4.9.0 (#6630)
4db21a3 chore: Bump borp from 0.21.0 to 1.0.0 (#6633)
0f4e544 chore: Bump markdownlint-cli2 from 0.21.0 to 0.22.0 (#6632)
33a2fcd chore: Bump pnpm/action-setup from 4.2.0 to 5.0.0 (#6629)
fd35d82 ci: reduce cron schedules from daily/weekly to monthly (#6623)
8dee9be fix: restore trustProxy function for number and string types, add null check ...
d457aed chore: upgrade to typescript v6.0.2 (#6605)
Additional commits viewable in compare view

Updates openid-client from 6.8.2 to 6.8.4

Changelog

Sourced from openid-client's changelog.

6.8.4 (2026-04-27)

Fixes

apply optional non-repudiation on generic grant ID Tokens (6202888)

filter jwe decryption keys by algorithm (34e2ffd)

preserve poll abort signals on requests (96a2d17)

retry dpop nonce errors for generic grants (498c4d9)

6.8.3 (2026-04-13)

Documentation

note a workaround for redirect_uri with query string or bare origin (e9689de), closes #868

Fixes

passport: delete one-time state on callback (1e7dd2e)

Commits

c645695 chore(release): 6.8.4
ee60464 chore: update CHANGELOG.md header
96a2d17 fix: preserve poll abort signals on requests
34e2ffd fix: filter jwe decryption keys by algorithm
6202888 fix: apply optional non-repudiation on generic grant ID Tokens
498c4d9 fix: retry dpop nonce errors for generic grants
35042cf chore: cleanup after release
66e4082 chore(release): 6.8.3
fa292f2 test: fix typings build issues
0600c91 test: deflake pollBackchannelAuthenticationGrant
Additional commits viewable in compare view

Updates resend from 6.9.4 to 6.12.2

Release notes

Sourced from resend's releases.

v6.12.2

What's Changed

fix: add new domain statuses by @rehanvdm in resend/resend-node#936

Full Changelog: resend/resend-node@v6.12.1...v6.12.2

v6.12.1

What's Changed

chore(deps): update dependency typescript to v6.0.3 by @renovate[bot] in resend/resend-node#935

chore(deps): update dependency dotenv to v17.4.2 by @renovate[bot] in resend/resend-node#927

chore(deps): update dependency @biomejs/biome to v2.4.12 by @renovate[bot] in resend/resend-node#916

fix(deps): update dependency next to v16.2.4 by @renovate[bot] in resend/resend-node#911

feat: add missing domain types: domains can be partially_verified/partially_failed by @CarolinaMoraes in resend/resend-node#937

Full Changelog: resend/resend-node@v6.12.0...v6.12.1

v6.12.0

What's Changed

chore(ci): use depot by @gabrielmfern in resend/resend-node#931

feat: preview tracking domains in resend/resend-node#932

Full Changelog: resend/resend-node@v6.11.0...v6.12.0

v6.11.0

What's Changed

chore(ci): migrate from BuildJet to Blacksmith runners by @lucasfcosta in resend/resend-node#907

chore(deps): update dependency vitest to v4.1.3 by @renovate[bot] in resend/resend-node#894

chore(deps): update dependency @types/node to v24.12.2 by @renovate[bot] in resend/resend-node#906

fix(deps): update dependency svix to v1.90.0 by @renovate[bot] in resend/resend-node#892

chore(deps): update dependency @biomejs/biome to v2.4.10 by @renovate[bot] in resend/resend-node#885

fix(deps): update dependency next to v16.2.2 by @renovate[bot] in resend/resend-node#893

chore(deps): update dependency typescript to v6 by @renovate[bot] in resend/resend-node#895

chore(deps): update pnpm to v10.33.0 by @renovate[bot] in resend/resend-node#896

fix(deps): update dependency esbuild to v0.28.0 by @renovate[bot] in resend/resend-node#909

chore(deps): update dependency dotenv to v17.4.1 by @renovate[bot] in resend/resend-node#908

chore(deps): update dependency vitest to v4.1.4 by @renovate[bot] in resend/resend-node#913

fix(deps): update react monorepo to v19.2.5 by @renovate[bot] in resend/resend-node#912

fix(deps): update dependency next to v16.2.3 [security] by @renovate[bot] in resend/resend-node#922

feat: add automations and events by @felipefreitag in resend/resend-node#866

chore: bump version by @isabellaaquino in resend/resend-node#925

fix: case conventions by @isabellaaquino in resend/resend-node#926

chore: bump to 6.11.0 for release by @lucasfcosta in resend/resend-node#928

Full Changelog: resend/resend-node@v6.10.0...v6.11.0

v6.10.0

... (truncated)

Commits

b514002 fix: add new domain statuses (#936)
1c10dbe feat: add missing domain types: domains can be partially_verified/partially_f...
168443a fix(deps): update dependency next to v16.2.4 (#911)
93328d9 chore(deps): update dependency @biomejs/biome to v2.4.12 (#916)
135aaaf chore(deps): update dependency dotenv to v17.4.2 (#927)
d7b7f1c chore(deps): update dependency typescript to v6.0.3 (#935)
39241d0 feat: preview tracking domains (#932)
fe864dc chore(ci): use depot (#931)
48b793f chore: bump to 6.11.0 for release (#928)
eb2fafe fix: case conventions (#926)
Additional commits viewable in compare view

Updates @xyflow/react from 12.10.1 to 12.10.2

Changelog

Sourced from @xyflow/react's changelog.

12.10.2

Patch Changes

#5735 a6c938fb2 Thanks @nvie! - Allow type field to be missing in BuiltInNode (no type field is the same as type: "default")

#5722 8c9b7e726 Thanks @dfblhmm! - Add snapGrid to screenToFlowPosition options

#5723 82249517a Thanks @moklick! - Pass options to useReactFlow/useSvelteFlow viewport helper functions correctly

#5733 64115cd08 Thanks @AlaricBaraou! - Fix empty store during ReactFlow remount by reordering StoreUpdater before GraphView and using layout effects

#5727 dd54e86b9 Thanks @solastley! - Ensure visual nodes selection state is cleared when zero selected nodes remain in the flow

Updated dependencies [4a278dbbf]:

@xyflow/system@0.0.76

Commits

ba0a361 chore(packages): bump
613ad30 Merge pull request #5733 from AlaricBaraou/fix/store-reset-timing-on-remount
a6c938f Explicitly allow missing type field in BuiltInNode type definition
f2831bd Merge pull request #5727 from unifygtm/clear-nodes-selection-active
0e48d84 Return hasSelectedNodes from adoptUserNodes and use it to update `nodesSe...
6db2bd0 fix(react): prevent empty store during ReactFlow remount
e7b78d1 Merge pull request #5720 from yarikoptic/enh-codespell
38f4fef Merge pull request #5722 from dfblhmm/fix/type-definition
759042d Fix spacing in store/index.ts
52d452b Centralize nodesSelectionActive update in setNodes of store
Additional commits viewable in compare view

Updates react from 19.1.0 to 19.2.5

Changelog

Sourced from react's changelog.

19.2.1 (Dec 3, 2025)

React Server Components

Bring React Server Component fixes to Server Actions (@sebmarkbage #35277)

19.2.0 (October 1st, 2025)

Below is a list of all new features, APIs, and bug fixes.

Read the React 19.2 release post for more information.

New React Features

<Activity>: A new API to hide and restore the UI and internal state of its children.

useEffectEvent is a React Hook that lets you extract non-reactive logic into an Effect Event.

cacheSignal (for RSCs) lets your know when the cache() lifetime is over.

React Performance tracks appear on the Performance panel’s timeline in your browser developer tools

New React DOM Features

Added resume APIs for partial pre-rendering with Web Streams:

resume: to resume a prerender to a stream.

resumeAndPrerender: to resume a prerender to HTML.

Added resume APIs for partial pre-rendering with Node Streams:

resumeToPipeableStream: to resume a prerender to a stream.

resumeAndPrerenderToNodeStream: to resume a prerender to HTML.

Updated prerender APIs to return a postponed state that can be passed to the resume APIs.

Notable changes

React DOM now batches suspense boundary reveals, matching the behavior of client side rendering. This change is especially noticeable when animating the reveal of Suspense boundaries e.g. with the upcoming <ViewTransition> Component. React will batch as much reveals as possible before the first paint while trying to hit popular first-contentful paint metrics.

Add Node Web Streams (prerender, renderToReadableStream) to server-side-rendering APIs for Node.js

Use underscore instead of : IDs generated by useId

All Changes

React

<Activity /> was developed over many years, starting before ClassComponent.setState (@acdlite @sebmarkbage and many others)

Stringify context as "SomeContext" instead of "SomeContext.Provider" (@kassens #33507)

Include stack of cause of React instrumentation errors with %o placeholder (@eps1lon #34198)

Fix infinite useDeferredValue loop in popstate event (@acdlite #32821)

Fix a bug when an initial value was passed to useDeferredValue (@acdlite #34376)

Fix a crash when submitting forms with Client Actions (@sebmarkbage #33055)

Hide/unhide the content of dehydrated suspense boundaries if they resuspend (@sebmarkbage #32900)

Avoid stack overflow on wide trees during Hot Reload (@sophiebits #34145)

Improve Owner and Component stacks in various places (@sebmarkbage, @eps1lon: #33629, #33724, #32735, #33723)

Add cacheSignal (@sebmarkbage #33557)

... (truncated)

Commits

23f4f9f 19.2.5
90ab3f8 Version 19.2.4
612e371 Version 19.2.3
b910fc1 Version 19.2.2
053df4e Version 19.2.1
5667a41 Bump next prerelease version numbers (#34639)
8bb7241 Bump useEffectEvent to Canary (#34610)
e3c9656 Ensure Performance Track are Clamped and Don't overlap (#34509)
68f00c9 Release Activity in Canary (#34374)
0e10ee9 [Reconciler] Set ProfileMode for Host Root Fiber by default in dev (#34432)
Additional commits viewable in compare view

Updates react-dom from 19.1.0 to 19.2.5

Changelog

Sourced from react-dom's changelog.

19.2.1 (Dec 3, 2025)

React Server Components

Bring React Server Component fixes to Server Actions (@sebmarkbage #35277)

19.2.0 (October 1st, 2025)

Below is a list of all new features, APIs, and bug fixes.

Read the React 19.2 release post for more information.

New React Features

<Activity>: A new API to hide and restore the UI and internal state of its children.

useEffectEvent is a React Hook that lets you extract non-reactive logic into an Effect Event.

cacheSignal (for RSCs) lets your know when the cache() lifetime is over.

React Performance tracks appear on the Performance panel’s timeline in your browser developer tools

New React DOM Features

Added resume APIs for partial pre-rendering with Web Streams:

resume: to resume a prerender to a stream.

resumeAndPrerender: to resume a prerender to HTML.

Added resume APIs for partial pre-rendering with Node Streams:

resumeToPipeableStream: to resume a prerender to a stream.

resumeAndPrerenderToNodeStream: to resume a prerender to HTML.

Updated prerender APIs to return a postponed state that can be passed to the resume APIs.

Notable changes

React DOM now batches suspense boundary reveals, matching the behavior of client side rendering. This change is especially noticeable when animating the reveal of Suspense boundaries e.g. with the upcoming <ViewTransition> Component. React will batch as much reveals as possible before the first paint while trying to hit popular first-contentful paint metrics.

Add Node Web Streams (prerender, renderToReadableStream) to server-side-rendering APIs for Node.js

Use underscore instead of : IDs generated by useId

All Changes

React

<Activity /> was developed over many years, starting before ClassComponent.setState (@acdlite @sebmarkbage and many others)

Stringify context as "SomeContext" instead of "SomeContext.Provider" (@kassens #33507)

Include stack of cause of React instrumentation errors with %o placeholder (@eps1lon #34198)

Fix infinite useDeferredValue loop in popstate event (@acdlite #32821)

Fix a bug when an initial value was passed to useDeferredValue (@acdlite #34376)

Fix a crash when submitting forms with Client Actions (@sebmarkbage #33055)

Hide/unhide the content of dehydrated suspense boundaries if they resuspend (@sebmarkbage #32900)

Avoid stack overflow on wide trees during Hot Reload (@sophiebits #34145)

Improve Owner and Component stacks in various places (@sebmarkbage, @eps1lon: #33629, #33724, #32735, #33723)

Add cacheSignal (@sebmarkbage #33557)

... (truncated)

Commits

23f4f9f 19.2.5
90ab3f8 Version 19.2.4
612e371 Version 19.2.3
b910fc1 Version 19.2.2
053df4e Version 19.2.1
8618113 Bump scheduler version (#34671)
1bd1f01 Ship partial-prerendering APIs to Canary (#34633)
2f0649a [Fizz] Remove nonce option from resume-and-prerender APIs (#34664)
5667a41 Bump next prerelease version numbers (#34639)
e08f53b Match react-dom/static test entrypoints and published entrypoints (#34599)
Additional commits viewable in compare view

Updates fumadocs-mdx from 14.2.11 to 14.3.2

Release notes

Sourced from fumadocs-mdx's releases.

fumadocs-mdx@14.3.2

Patch Changes

79d3209: Deprecate forwarded schemas at fumadocs-mdx/config, recommend fumadocs-core/source/schema instead.

Updated dependencies [79d3209]

fumadocs-core@16.8.5

fumadocs-mdx@14.3.0

Minor Changes

fa9f678: Make Next.js config ESM only

Newer Next.js supported .mts extension for Next.js config files, see Next.js docs for more info.

fumadocs-mdx@14.2.14

Patch Changes

eb62304: Make mdx-remote optional for dynamic mode

Updated dependencies [e1567e2]

Updated dependencies [9a200c8]

Updated dependencies [c731a92]

Updated dependencies [a4189ce]

fumadocs-core@16.7.15

fumadocs-mdx@14.2.13

Patch Changes

2d8f596: fix npm pack skipping nested node_modules

Updated dependencies [2d8f596]

@fumadocs/mdx-remote@1.4.8

fumadocs-core@16.7.14

fumadocs-mdx@14.2.12

Patch Changes

690ddb9: bundle more deps

Updated dependencies [690ddb9]

@fumadocs/mdx-remote@1.4.7

fumadocs-core@16.7.13

Commits

d6bf3e0 Merge pull request #3235 from fuma-nama/changeset-release/dev
af7ee2d CLI: fix layout preserve plugin
970b1bf OpenAPI: fix inconsistency in option names
2eff8e9 Chore: update showcases
fa781f1 fix jsdoc omitted from output
a83709f clean code
3e85c69 Docs: add more docs for MDX Remote
79d3209 Core: narrow schema types
387e659 UI: relocate toc width
e1f19c7 Version Packages (#3232)
Additional commits viewable in compare view

Updates @openai/agents from 0.0.4 to 0.8.5

Commits

54f351e chore: update versions (#1188)
a0fb92c docs: update translated document pages (#1189)
f7dba06 feat: #1186 expose createAiSdkUiMessageStream (#1187)
8c416ff chore: update versions (#1168)
40900fd test: preserve tracing in real-model integration fixtures (#1183)
4b13496 fix(agents-core): deduplicate trace provider shutdown cleanup (#1182)
3a56cf8 fix: #1176 normalize compacted Responses user messages before storing them (#...
34c07ef test: stabilize leak detection harness (#1169)
7929f7a fix(agents-core): restore discriminated union tool schemas (#1172)
d84b541 docs: update all translated pages using gpt-5.4 model
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @openai/agents since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…y with 12 updates Bumps the production-dependencies group with 12 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk) | `1.27.1` | `1.29.0` | | [@fastify/swagger-ui](https://github.com/fastify/fastify-swagger-ui) | `5.2.5` | `5.2.6` | | [@prisma/adapter-pg](https://github.com/prisma/prisma/tree/HEAD/packages/adapter-pg) | `7.5.0` | `7.8.0` | | [@prisma/client](https://github.com/prisma/prisma/tree/HEAD/packages/client) | `7.5.0` | `7.8.0` | | [fastify](https://github.com/fastify/fastify) | `5.8.4` | `5.8.5` | | [openid-client](https://github.com/panva/openid-client) | `6.8.2` | `6.8.4` | | [resend](https://github.com/resend/resend-node) | `6.9.4` | `6.12.2` | | [@xyflow/react](https://github.com/xyflow/xyflow/tree/HEAD/packages/react) | `12.10.1` | `12.10.2` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.1.0` | `19.2.5` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.1.0` | `19.2.5` | | [fumadocs-mdx](https://github.com/fuma-nama/fumadocs) | `14.2.11` | `14.3.2` | | [@openai/agents](https://github.com/openai/openai-agents-js) | `0.0.4` | `0.8.5` | Updates `@modelcontextprotocol/sdk` from 1.27.1 to 1.29.0 - [Commits](modelcontextprotocol/typescript-sdk@v1.27.1...v1.29.0) Updates `@fastify/swagger-ui` from 5.2.5 to 5.2.6 - [Commits](fastify/fastify-swagger-ui@v5.2.5...v5.2.6) Updates `@prisma/adapter-pg` from 7.5.0 to 7.8.0 - [Commits](https://github.com/prisma/prisma/commits/7.8.0/packages/adapter-pg) Updates `@prisma/client` from 7.5.0 to 7.8.0 - [Commits](https://github.com/prisma/prisma/commits/7.8.0/packages/client) Updates `fastify` from 5.8.4 to 5.8.5 - [Release notes](https://github.com/fastify/fastify/releases) - [Commits](fastify/fastify@v5.8.4...v5.8.5) Updates `openid-client` from 6.8.2 to 6.8.4 - [Changelog](https://github.com/panva/openid-client/blob/main/CHANGELOG.md) - [Commits](panva/openid-client@v6.8.2...v6.8.4) Updates `resend` from 6.9.4 to 6.12.2 - [Release notes](https://github.com/resend/resend-node/releases) - [Commits](resend/resend-node@v6.9.4...v6.12.2) Updates `@xyflow/react` from 12.10.1 to 12.10.2 - [Changelog](https://github.com/xyflow/xyflow/blob/main/packages/react/CHANGELOG.md) - [Commits](https://github.com/xyflow/xyflow/commits/@xyflow/react@12.10.2/packages/react) Updates `react` from 19.1.0 to 19.2.5 - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.5/packages/react) Updates `react-dom` from 19.1.0 to 19.2.5 - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.5/packages/react-dom) Updates `fumadocs-mdx` from 14.2.11 to 14.3.2 - [Release notes](https://github.com/fuma-nama/fumadocs/releases) - [Commits](https://github.com/fuma-nama/fumadocs/compare/fumadocs-mdx@14.2.11...fumadocs-mdx@14.3.2) Updates `@openai/agents` from 0.0.4 to 0.8.5 - [Commits](openai/openai-agents-js@v0.0.4...v0.8.5) --- updated-dependencies: - dependency-name: "@modelcontextprotocol/sdk" dependency-version: 1.29.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: "@fastify/swagger-ui" dependency-version: 5.2.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: "@prisma/adapter-pg" dependency-version: 7.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: "@prisma/client" dependency-version: 7.8.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: fastify dependency-version: 5.8.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: openid-client dependency-version: 6.8.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: resend dependency-version: 6.12.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: "@xyflow/react" dependency-version: 12.10.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: react dependency-version: 19.2.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: react-dom dependency-version: 19.2.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: fumadocs-mdx dependency-version: 14.3.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies - dependency-name: "@openai/agents" dependency-version: 0.8.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: production-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 27, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the production-dependencies group across 1 directory with 12 updates#50

chore(deps): bump the production-dependencies group across 1 directory with 12 updates#50
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/production-dependencies-76b1b2a1cb

dependabot Bot commented on behalf of github Apr 27, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Apr 27, 2026

v5.8.5

⚠️ Security Release

What's Changed

New Contributors

6.8.4 (2026-04-27)

Fixes

6.8.3 (2026-04-13)

Documentation

Fixes

v6.12.2

What's Changed

v6.12.1

What's Changed

v6.12.0

What's Changed

v6.11.0

What's Changed

v6.10.0

12.10.2

Patch Changes

19.2.1 (Dec 3, 2025)

React Server Components

19.2.0 (October 1st, 2025)

New React Features

New React DOM Features

Notable changes

All Changes

React

19.2.1 (Dec 3, 2025)

React Server Components

19.2.0 (October 1st, 2025)

New React Features

New React DOM Features

Notable changes

All Changes

React

fumadocs-mdx@14.3.2

Patch Changes

fumadocs-mdx@14.3.0

Minor Changes

fumadocs-mdx@14.2.14

Patch Changes

fumadocs-mdx@14.2.13

Patch Changes

fumadocs-mdx@14.2.12

Patch Changes

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants