Skip to content

chore(deps): update node dependencies #793

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
loopingz wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update node dependencies #793

loopingz wants to merge 1 commit into from

Conversation

@loopingz
Copy link
Contributor

@loopingz loopingz commented Jan 14, 2026
edited
Loading

This PR contains the following updates:

Package Type Update Change
@adobe/css-tools dependencies patch ^4.4.1^4.4.4
@hono/node-server dependencies patch ^1.19.5^1.19.9
@rollup/plugin-commonjs (source) devDependencies patch ^28.0.8^28.0.9
@rollup/plugin-commonjs (source) devDependencies patch ^28.0.3^28.0.9
@rollup/plugin-node-resolve (source) devDependencies patch ^16.0.1^16.0.3
@rollup/plugin-replace (source) devDependencies patch ^6.0.2^6.0.3
@rollup/plugin-typescript (source) devDependencies patch ^12.1.2^12.3.0
@types/micromatch (source) devDependencies patch ^4.0.9^4.0.10
@types/node (source) devDependencies patch ^22.19.2^22.19.7
@types/node (source) devDependencies patch ^22.19.2^22.19.7
@types/node (source) devDependencies patch ^22.19.1^22.19.7
@types/node (source) devDependencies patch ^22.13.5^22.19.7
@types/node (source) dependencies patch ^22.19.2^22.19.7
@types/node (source) devDependencies patch ^22.15.0^22.19.7
@types/node (source) devDependencies minor ^25.0.3^25.1.0
@types/papaparse (source) devDependencies patch ^5.5.1^5.5.2
@types/tar-stream (source) devDependencies patch ^3.1.3^3.1.4
@vertesia/plugin-builder (source) devDependencies minor ^0.79.4^0.81.1
ansi-escapes dependencies patch ^6.2.0^6.2.1
chalk dependencies patch ^5.3.0^5.6.2
chalk dependencies patch ^5.4.1^5.6.2
cli-spinners dependencies patch ^2.9.1^2.9.2
concurrently devDependencies patch ^9.1.2^9.2.1
esbuild@<0.25.0 pnpm.overrides patch ^0.27.1^0.27.2
eventsource dependencies patch ^3.0.6^3.0.7
eventsource-parser dependencies patch ^1.1.1^1.1.2
fast-xml-parser dependencies patch ^5.2.3^5.3.4
firebase (source, changelog) dependencies patch ^10.12.2^10.14.1
globals devDependencies minor ^16.0.0^16.5.0
hono (source) dependencies patch ^4.10.3^4.11.7
is-generator-function pnpm.overrides minor 1.0.101.1.2
jose dependencies patch ^6.0.11^6.1.3
log-symbols dependencies patch ^7.0.0^7.0.1
mermaid dependencies patch ^11.4.0^11.12.2
mime dependencies patch ^4.0.0^4.1.0
mime dependencies patch ^4.0.4^4.1.0
mocha (source) devDependencies patch ^10.2.0^10.8.2
monaco-editor dependencies minor ^0.52.2^0.55.1
ms dependencies patch 3.0.0-canary.13.0.0-canary.202508261828
open dependencies patch ^10.1.0^10.2.0
prettier (source) devDependencies minor 3.5.33.8.1
recharts dependencies minor ^3.5.0^3.7.0
rimraf devDependencies minor ^6.0.1^6.1.2
rimraf devDependencies patch ^5.0.5^5.0.10
rollup (source) devDependencies minor ^4.52.5^4.57.1
rollup (source) devDependencies minor ^4.53.3^4.57.1
rollup (source) devDependencies minor ^4.40.2^4.57.1
rollup (source) peerDependencies minor ^4.0.0^4.57.1
sharp (source, changelog) dependencies minor ^0.33.4^0.34.5
sharp (source, changelog) dependencies minor ^0.33.5^0.34.5
tmp dependencies patch ^0.2.4^0.2.5
typescript (source) devDependencies patch ^5.9.2^5.9.3
typescript (source) dependencies patch ^5.6.3^5.9.3
typescript (source) dependencies patch ^5.5.3^5.9.3
unist-util-visit dependencies minor ^5.0.0^5.1.0
vega-lite (source) dependencies patch ^6.4.1^6.4.2
yaml (source) dependencies patch ^2.6.0^2.8.2
zod (source) dependencies patch ^4.3.5^4.3.6
zod (source) dependencies patch ^3.24.1^3.25.76

Warning

Some dependencies could not be looked up. Check the warning logs for more information.

Release Notes

honojs/node-server (@​hono/node-server)

v1.19.9

Compare Source

What's Changed

Full Changelog: honojs/node-server@v1.19.8...v1.19.9

v1.19.8

Compare Source

What's Changed
New Contributors

Full Changelog: honojs/node-server@v1.19.7...v1.19.8

evanw/esbuild (esbuild@<0.25.0)

v0.27.2

Compare Source

  • Allow import path specifiers starting with #/ (#​4361)

    Previously the specification for package.json disallowed import path specifiers starting with #/, but this restriction has recently been relaxed and support for it is being added across the JavaScript ecosystem. One use case is using it for a wildcard pattern such as mapping #/* to ./src/* (previously you had to use another character such as #_* instead, which was more confusing). There is some more context in nodejs/node#49182.

    This change was contributed by @​hybrist.

  • Automatically add the -webkit-mask prefix (#​4357, #​4358)

    This release automatically adds the -webkit- vendor prefix for the mask CSS shorthand property:

    /* Original code */
main {
  mask: url(x.png) center/5rem no-repeat
}

/* Old output (with --target=chrome110) */
main {
  mask: url(x.png) center/5rem no-repeat;
}

/* New output (with --target=chrome110) */
main {
  -webkit-mask: url(x.png) center/5rem no-repeat;
  mask: url(x.png) center/5rem no-repeat;
}

    This change was contributed by @​BPJEnnova.

  • Additional minification of switch statements (#​4176, #​4359)

    This release contains additional minification patterns for reducing switch statements. Here is an example:

    // Original code
switch (x) {
  case 0:
    foo()
    break
  case 1:
  default:
    bar()
}

// Old output (with --minify)
switch(x){case 0:foo();break;case 1:default:bar()}

// New output (with --minify)
x===0?foo():bar();

  • Forbid using declarations inside switch clauses (#​4323)

    This is a rare change to remove something that was previously possible. The Explicit Resource Management proposal introduced using declarations. These were previously allowed inside case and default clauses in switch statements. This had well-defined semantics and was already widely implemented (by V8, SpiderMonkey, TypeScript, esbuild, and others). However, it was considered to be too confusing because of how scope works in switch statements, so it has been removed from the specification. This edge case will now be a syntax error. See tc39/proposal-explicit-resource-management#215 and rbuckton/ecma262#14 for details.

    Here is an example of code that is no longer allowed:

    switch (mode) {
  case 'read':
    using readLock = db.read()
    return readAll(readLock)

  case 'write':
    using writeLock = db.write()
    return writeAll(writeLock)
}

    That code will now have to be modified to look like this instead (note the additional { and } block statements around each case body):

    switch (mode) {
  case 'read': {
    using readLock = db.read()
    return readAll(readLock)
  }
  case 'write': {
    using writeLock = db.write()
    return writeAll(writeLock)
  }
}

    This is not being released in one of esbuild's breaking change releases since this feature hasn't been finalized yet, and esbuild always tracks the current state of the specification (so esbuild's previous behavior was arguably incorrect).

NaturalIntelligence/fast-xml-parser (fast-xml-parser)

v5.3.4: fix: handle HTML numeric and hex entities when out of range

Compare Source

sindresorhus/globals (globals)

v16.5.0

Compare Source

v16.4.0

Compare Source

v16.3.0

Compare Source

v16.2.0

Compare Source

v16.1.0

Compare Source

inspect-js/is-generator-function (is-generator-function)

v1.1.2

Compare Source

Fixed
  • [Fix] fix broken logic #45
Commits
  • [Dev Deps] update @arethetypeswrong/cli, @ljharb/eslint-cig, @ljharb/tsconfig, @types/tape, for-each 9638da4
  • [Deps] update call-bound, get-proto d5e41c1

v1.1.1

Compare Source

Commits
  • [Refactor] use generator-function 5477ff1

v1.1.0

Compare Source

Commits
  • [actions] reuse common workflows 7301651
  • [actions] split out node 10-20, and 20+ 40f30a5
  • [meta] use npmignore to autogenerate an npmignore file ec843a4
  • [New] add types 6dd27c4
  • [actions] update codecov uploader 717f85e
  • [Dev Deps] update eslint, @ljharb/eslint-config, safe-publish-latest, tape 4280e62
  • [actions] update rebase action to use reusable workflow 895c2d0
  • [Tests] use for-each 3caee87
  • [Robustness] use call-bound 1eb55de
  • [Dev Deps] update eslint, @ljharb/eslint-config, aud, auto-changelog, object-inspect, tape 5bbd4cd
  • [Robustness] use safe-regex-test 5f8b992
  • [Dev Deps] update @ljharb/eslint-config, auto-changelog, npmignore, tape c730f4c
  • [Robustness] use get-proto 6dfff38
  • [Tests] replace aud with npm audit 725db70
  • [Deps] update has-tostringtag 5cc3c2d
  • [Dev Deps] add missing peer dep 869a507
microsoft/monaco-editor (monaco-editor)

v0.55.1

Compare Source

  • Fixes missing language exports (monaco.json/typescript/...) due to wrong "types" path - #​5123

v0.55.0

Compare Source

Breaking Changes
  • Moves nested namespaces (languages.css, languages.html, languages.json, languages.typescript) to top level namespaces (css, html, json, typescript) to simplify the build process and align with typescript recommendations.
New Features
  • Adds native LSP support (see new lsp namespace).
Bug Fixes
  • Updates dompurify to 3.2.7

v0.54.0

Compare Source

  • Adds option editor.mouseMiddleClickAction
  • Various bug fixes

v0.53.0

Compare Source

  • ⚠️ This release deprecates the AMD build and ships with significant changes of the AMD build. The AMD build will still be shipped for a while, but we don't offer support for it anymore. Please migrate to the ESM build.
New Features
  • Next Edit Suggestion support.
  • Scroll On Middle Click
  • Edit Context Support
Breaking Changes
  • Internal AMD modules are no longer accessible. Accessing internal AMD modules was never supported. While this is still possible in the ESM build, we don't encourage this usage pattern.
  • The browser-script-editor scenario for unbundled synchronous script import and editor creation no longer works. Instead, a the ESM build should be used with a bundler, such as vite or webpack.
  • Custom AMD workers don't work anymore out of the box.
prettier/prettier (prettier)

v3.8.1

Compare Source

diff

Include available printers in plugin type declarations (#​18706 by @​porada)
// Input
import * as prettierPluginEstree from "prettier/plugins/estree";

// Prettier 3.8.0
// Property 'printers' does not exist on type 'typeof import("prettier/plugins/estree")'. ts(2339)
prettierPluginEstree.printers.estree; //=> any

// Prettier 3.8.1
prettierPluginEstree.printers.estree; //=> Printer
prettierPluginEstree.printers["estree-json"]; //=> Printer

v3.8.0

Compare Source

diff

🔗 Release Notes

v3.7.4

Compare Source

diff

LWC: Avoid quote around interpolations (#​18383 by @​kovsu)
<!-- Input -->
<div foo={bar}>   </div>

<!-- Prettier 3.7.3 (--embedded-language-formatting off) -->
<div foo="{bar}"></div>

<!-- Prettier 3.7.4 (--embedded-language-formatting off) -->
<div foo={bar}></div>
TypeScript: Fix comment inside union type gets duplicated (#​18393 by @​fisker)
// Input
type Foo = (/** comment */ a | b) | c;

// Prettier 3.7.3
type Foo = /** comment */ (/** comment */ a | b) | c;

// Prettier 3.7.4
type Foo = /** comment */ (a | b) | c;
TypeScript: Fix unstable comment print in union type comments (#​18395 by @​fisker)
// Input
type X = (A | B) & (
  // comment
  A | B
);

// Prettier 3.7.3 (first format)
type X = (A | B) &
  (// comment
  A | B);

// Prettier 3.7.3 (second format)
type X = (
  | A
  | B // comment
) &
  (A | B);

// Prettier 3.7.4
type X = (A | B) &
  // comment
  (A | B);

v3.7.3

Compare Source

diff

API: Fix prettier.getFileInfo() change that breaks VSCode extension (#​18375 by @​fisker)

An internal refactor accidentally broke the VSCode extension plugin loading.

v3.7.2

Compare Source

diff

JavaScript: Fix string print when switching quotes (#​18351 by @​fisker)
// Input
console.log("A descriptor\\'s .kind must be \"method\" or \"field\".")

// Prettier 3.7.1
console.log('A descriptor\\'s .kind must be "method" or "field".');

// Prettier 3.7.2
console.log('A descriptor\\\'s .kind must be "method" or "field".');
JavaScript: Preserve quote for embedded HTML attribute values (#​18352 by @​kovsu)
// Input
const html = /* HTML */ ` <div class="${styles.banner}"></div> `;

// Prettier 3.7.1
const html = /* HTML */ ` <div class=${styles.banner}></div> `;

// Prettier 3.7.2
const html = /* HTML */ ` <div class="${styles.banner}"></div> `;
TypeScript: Fix comment in empty type literal (#​18364 by @​fisker)
// Input
export type XXX = {
  // tbd
};

// Prettier 3.7.1
export type XXX = { // tbd };

// Prettier 3.7.2
export type XXX = {
  // tbd
};

v3.7.1

Compare Source

diff

API: Fix performance regression in doc printer (#​18342 by @​fisker)

Prettier 3.7.0 can be very slow when formatting big files, the regression has been fixed.

v3.7.0

Compare Source

diff

🔗 Release Notes

v3.6.2

Compare Source

diff

Markdown: Add missing blank line around code block (#​17675 by @​fisker)
<!-- Input -->
1. Some text, and code block below, with newline after code block

   ```yaml
   ---
   foo: bar
   ```

   1. Another
   2. List

<!-- Prettier 3.6.1 -->
1. Some text, and code block below, with newline after code block

   ```yaml
   ---
   foo: bar
   ```
   1. Another
   2. List

<!-- Prettier 3.6.2 -->
1. Some text, and code block below, with newline after code block

   ```yaml
   ---
   foo: bar
   ```

   1. Another
   2. List

v3.6.1

Compare Source

diff

TypeScript: Allow const without initializer (#​17650, #​17654 by @​fisker)
// Input
export const version: string;

// Prettier 3.6.0 (--parser=babel-ts)
SyntaxError: Unexpected token (1:21)
> 1 | export const version: string;
    |                     ^

// Prettier 3.6.0 (--parser=oxc-ts)
SyntaxError: Missing initializer in const declaration (1:14)
> 1 | export const version: string;
    |              ^^^^^^^^^^^^^^^

// Prettier 3.6.1
export const version: string;
Miscellaneous: Avoid closing files multiple times (#​17665 by @​43081j)

When reading a file to infer the interpreter from a shebang, we use the
n-readlines library to read the first line in order to get the shebang.

This library closes files when it reaches EOF, and we later try close the same
files again. We now close files only if n-readlines did not already close
them.

v3.6.0

Compare Source

diff

🔗 Release Notes

recharts/recharts (recharts)

v3.7.0

Compare Source

What's Changed

📢 Cell is now deprecated and will be removed in the next major version. Please migrate all Cell usage to use the shape prop of respective chart elements. ‼️

Feat
New Hooks
Other
Fix
Chore
Docs

We've started auto-generating our docs for the most part so you should see large improvements in accuracy of the docs between the code, the website, and the storybook. Huge shoutout to @​PavelVanecek 🚀

New Contributors

Full Changelog: recharts/recharts@v3.6.0...v3.7.0

isaacs/rimraf (rimraf)

v6.1.2

Compare Source

v6.1.1

Compare Source

v6.1.0

Compare Source

rollup/rollup (rollup)

v4.57.1

Compare Source

2026-01-30

Bug Fixes
  • Fix heap corruption issue in Windows (#​6251)
  • Ensure exports of a dynamic import are fully included when called from a try...catch (#​6254)
Pull Requests

v4.57.0

Compare Source

2026-01-27

Features
  • Add import attributes to all plugin hooks that did not provide them yet (#​5700)
  • Deprecate returning import attributes from load or transform hooks as that will no longer be supported with rollup 5 (#​5700)
Pull Requests

v4.56.0

Compare Source

2026-01-22

Features
  • Track object property inclusions of dynamic namespace members (#​6230)
Bug Fixes
  • Handle methods that access dynamically imported namespace members via this (#​6230)
Pull Requests

v4.55.3

Compare Source

2026-01-21

Bug Fixes
  • Fix JSX semicolon insert position in variable declarations (#​6241)
Pull Requests

v4.55.2

Compare Source

2026-01-19

Bug Fixes
  • Sort manual chunks by execution order to reduce circular dependency issues (#​6240)
Pull Requests

v4.55.1

Compare Source

2026-01-05

Bug Fixes
  • Fix artifact reference for OpenBSD (#​6231)
Pull Requests
lovell/sharp (sharp)

v0.34.5

Compare Source

  • Upgrade to libvips v8.17.3 for upstream bug fixes.

  • Add experimental support for prebuilt Linux RISC-V 64-bit binaries.

  • Support building from source with npm v12+, deprecate --build-from-source flag.
    #​4458

  • Add support for BigTIFF output.
    #​4459
    @​throwbi

  • Improve error messaging when only warnings issued.
    #​4465

  • Simplify ICC processing when retaining input profiles.
    #​4468

v0.34.4

Compare Source

  • Upgrade to libvips v8.17.2 for upstream bug fixes.

  • Ensure TIFF subifd and OpenSlide level input options are respected (regression in 0.34.3).

  • Ensure autoOrient occurs before non-90 angle rotation.
    #​4425

  • Ensure autoOrient removes existing metadata after shrink-on-load.
    #​4431

  • TypeScript: Ensure KernelEnum includes linear.
    #​4441
    @​BayanBennett

  • Ensure unlimited flag is passed upstream when reading TIFF images.
    #​4446

  • Support Electron memory cage when reading XMP metadata (regression in 0.34.3).
    #​4451

  • Add sharp-libvips rpath for yarn v5 support.
    #​4452
    @​arcanis

v0.34.3

Compare Source

v0.34.2

Compare Source

v0.34.1

Compare Source

v0.34.0

Compare Source

microsoft/TypeScript (typescript)

v5.9.3: TypeScript 5.9.3

Compare Source

Note: this tag was recreated to point at the correct commit. The npm package contained the correct content.

For release notes, check out the release announcement

Downloads are available on:

syntax-tree/unist-util-visit (unist-util-visit)

v5.1.0

Compare Source

Types

Full Changelog: syntax-tree/unist-util-visit@5.0.0...5.1.0

vega/vega-lite (vega-lite)

v6.4.2

Compare Source

Bug Fixes
colinhacks/zod (zod)

v4.3.6

Compare Source

Commits:

Configuration

📅 Schedule: Branch creation - Only on Wednesday ( * * * * 3 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

@loopingz loopingz requested a review from a team as a code owner January 14, 2026 00:17
@loopingz loopingz added the dependencies Pull requests that update a dependency file label Jan 14, 2026
@loopingz
Copy link
Contributor Author

loopingz commented Jan 14, 2026
edited
Loading

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: tools/environment-configuration/package-lock.json
npm warn Unknown env config "store". This will stop working in the next major version of npm.
npm error code EUNSUPPORTEDPROTOCOL
npm error Unsupported URL Type "workspace:": workspace:*
npm error A complete log of this run can be found in: /tmp/renovate-cache/others/npm/_logs/2026-01-30T13_00_17_327Z-debug-0.log

@loopingz loopingz force-pushed the renovate/node-dependencies branch 7 times, most recently from 3d1398d to f8f0e41 Compare January 21, 2026 12:11
@loopingz loopingz force-pushed the renovate/node-dependencies branch 9 times, most recently from 33138e2 to f82d88e Compare January 29, 2026 00:14
@loopingz loopingz force-pushed the renovate/node-dependencies branch from f82d88e to eb38778 Compare January 29, 2026 12:20
@loopingz loopingz force-pushed the renovate/node-dependencies branch from eb38778 to a6e7c45 Compare January 30, 2026 13:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@loopingz @renovate-bot