build(deps): bump the minor-and-patch group across 1 directory with 20 updates by dependabot[bot] · Pull Request #72 · groundsgg/cockpit

dependabot · 2026-03-02T02:53:57Z

Bumps the minor-and-patch group with 20 updates in the / directory:

Package	From	To
@formatjs/intl-localematcher	`0.7.1`	`0.8.1`
@paralleldrive/cuid2	`3.0.4`	`3.3.0`
@prisma/adapter-pg	`7.1.0`	`7.4.2`
@prisma/client	`7.1.0`	`7.4.2`
better-auth	`1.4.7`	`1.5.0`
dotenv	`17.2.3`	`17.3.1`
lucide-react	`0.561.0`	`0.575.0`
next	`16.0.10`	`16.1.6`
pg	`8.16.3`	`8.19.0`
prisma	`7.1.0`	`7.4.2`
react	`19.2.3`	`19.2.4`
react-dom	`19.2.3`	`19.2.4`
tailwind-merge	`3.4.0`	`3.5.0`
zod	`4.2.0`	`4.3.6`
@commitlint/cli	`20.2.0`	`20.4.2`
@commitlint/config-conventional	`20.2.0`	`20.4.2`
@tailwindcss/postcss	`4.1.18`	`4.2.1`
lint-staged	`16.2.7`	`16.3.1`
prettier	`3.7.4`	`3.8.1`
tailwindcss	`4.1.18`	`4.2.1`

Updates @formatjs/intl-localematcher from 0.7.1 to 0.8.1

Release notes

Sourced from @formatjs/intl-localematcher's releases.

@formatjs/intl-localematcher@0.8.0

0.8.0 (2026-01-15)

Features

@formatjs/intl-segmenter: improve Unicode 17.0 Format/Extend transparency and upgrade deps (#5862) (effeb9c), closes #29 - by @longlho

@formatjs/intl-localematcher@0.7.3

0.7.3 (2025-12-23)

Bug Fixes

@formatjs/intl-localematcher: speed up best fit matcher, fix #4936 (#5674) (a6ad458) - by @longlho

Commits

4f1a1cf build: publish
71e4c82 build: allow renovate and graphite-app bot for Claude
1fbac61 build: rm tsx, use --experimental-transform-types (#6007)
968b211 fix(@formatjs/cli-lib): respect throws:false flag in extract() function (#6002)
c92c30b fix(@formatjs/intl-datetimeformat): fix formatRange date duplication and h24 ...
b7a75e0 build: add Claude Code GitHub Workflow (#5998)
abfa037 feat(formatjs_cli): add base62 support (#5996)
e91cc79 fix(formatjs_cli): bump version
fb23213 fix(formatjs_cli): fix format extraction bug (#5995)
05afc90 chore(deps): update dependency lodash-es to v4.17.23 [security] (#5989)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @formatjs/intl-localematcher since your current version.

Updates @paralleldrive/cuid2 from 3.0.4 to 3.3.0

Changelog

Sourced from @paralleldrive/cuid2's changelog.

[3.3.0] - 2026-01-25

Fixed

Fix typo in package.json exports field: ./package.json path was incorrectly specified

Fix TypeScript compilation error (TS1203) by replacing export = with named exports in index.d.ts

Updated

Update AI development framework (aidd) to v2.5.0 for enhanced security reviews

Update all devDependencies to latest versions (@types/node, @types/react, eslint, eslint-config-next, eslint-config-prettier, eslint-plugin-prettier, next, prettier, react, react-dom, release-it, riteway, updtr, watch)

[3.0.2] - 2025-10-27

Changed

Remove collision-test from pre-commit hook to unblock release process

Fixed

Replace BigInt with bignumber.js for broader browser support (legacy browsers)

Add export module field to package.json for better ESM compatibility

Added

Implement CSPRNG using crypto.getRandomValues for enhanced security

Add validation to throw error when length > 32

Documentation

Fix typo: Change "Pseudo" to "Pseudo" in README.md

Update link for PleaseRobMe.com

[3.0.0] - 2025-10-18

⚠️ BREAKING CHANGES

Convert entire project from CommonJS to ES modules

Changed from require()/module.exports to import/export

Added "type": "module" to package.json

Users must use ESM imports or upgrade to this version carefully

For CommonJS compatibility, use v2.3.1 instead

[2.3.1] - 2025-10-24

Fixed

Maintenance release: Restore CommonJS compatibility for v2.x line

This version is based on v2.2.2 to provide a non-breaking upgrade path

Published with v2-compat tag for users who need CommonJS

... (truncated)

Commits

2275e80 chore(release): v3.3.0
3af6f1b chore: update CHANGELOG for v3.2.1
ee1ff97 Merge pull request #119 from paralleldrive/update
59541b5 chore: downgrade packages for security
aebdc31 chore: remove legacy Travis CI config
71b5d09 ci: add GitHub Actions workflow
d044cfe chore: update dependencies and AI framework
3bec9b1 Merge pull request #116 from paralleldrive/copilot/fix-typescript-error-ts1203
a910d6e Delete REVIEW.md
76b5c83 docs: add comprehensive code review for TS1203 fix
Additional commits viewable in compare view

Updates @prisma/adapter-pg from 7.1.0 to 7.4.2

Release notes

Sourced from @prisma/adapter-pg's releases.

7.4.2

Today, we are issuing a 7.4.2 patch release focused on bug fixes and quality improvements.

🛠 Fixes

Prisma Client

Fix a case-insensitive IN and NOT IN filter regression (prisma/prisma#29243)

Fix a query plan mutation issue that resulted in broken cursor queries (prisma/prisma#29262)

Fix an array parameter wrapping issue in push operations (prisma/prisma-engines#5784)

Fix Uint8Array serialization in nested JSON fields (prisma/prisma#29268)

Fix an issue with MySQL joins that relied on non-strict equality (prisma/prisma#29251)

Driver Adapters

@prisma/adapter-mariadb: Update text column detection to check for a binary collation (prisma/prisma#29238)

@prisma/adapter-mariadb: Correct relationJoins compatibility check for MariaDB 8.x versions (prisma/prisma#29246)

Schema Engine

Fix partial index predicate comparison on PostgreSQL and MSSQL (prisma/prisma-engines#5780)

🙏 Huge thanks to our community

Many of the fixes in this release were contributed by our amazing community members. We're grateful for your continued support and contributions that help make Prisma better for everyone!

7.4.1

Today, we are issuing a 7.4.1 patch release focused on bug fixes and quality improvements.

🛠 Fixes

Prisma Client

Fix cursor-based pagination regression with parameterised values (prisma/prisma#29184)

Preserve Prisma.skip through query extension argument cloning (prisma/prisma#29198)

Enable batching of multiple queries inside interactive transactions (prisma/prisma#25571)

Add missing JSON value deserialization for JSONB parameter fields (prisma/prisma#29182)

Apply result extensions correctly for nested and fluent relations (prisma/prisma#29218)

Allow missing config datasource URL and validate only when needed (prisma/prisma-engines#5777)

Driver Adapters

@prisma/adapter-ppg: Handle null values in type parsers for nullable columns (prisma/prisma#29192)

Prisma Schema Language

Support where argument on field-level @unique for partial indexes (prisma/prisma-engines#5774)

Add object expression and object member support to schema reformatter (prisma/prisma-engines#5776)

🙏 Huge thanks to our community

Many of the fixes in this release were contributed by our amazing community members. We're grateful for your continued support and contributions that help make Prisma better for everyone!

7.4.0

Today, we are excited to share the 7.4.0 stable release 🎉

... (truncated)

Commits

531886f fix: fix byte upserts by removing legacy byte array representation (#28913)
0c6db15 fix(adapter-{pg,neon,ppg}): handle 22P02 error in Postgres (#28849)
See full diff in compare view

Updates @prisma/client from 7.1.0 to 7.4.2

Release notes

Sourced from @prisma/client's releases.

7.4.2

Today, we are issuing a 7.4.2 patch release focused on bug fixes and quality improvements.

🛠 Fixes

Prisma Client

Fix a case-insensitive IN and NOT IN filter regression (prisma/prisma#29243)

Fix a query plan mutation issue that resulted in broken cursor queries (prisma/prisma#29262)

Fix an array parameter wrapping issue in push operations (prisma/prisma-engines#5784)

Fix Uint8Array serialization in nested JSON fields (prisma/prisma#29268)

Fix an issue with MySQL joins that relied on non-strict equality (prisma/prisma#29251)

Driver Adapters

@prisma/adapter-mariadb: Update text column detection to check for a binary collation (prisma/prisma#29238)

@prisma/adapter-mariadb: Correct relationJoins compatibility check for MariaDB 8.x versions (prisma/prisma#29246)

Schema Engine

Fix partial index predicate comparison on PostgreSQL and MSSQL (prisma/prisma-engines#5780)

🙏 Huge thanks to our community

Many of the fixes in this release were contributed by our amazing community members. We're grateful for your continued support and contributions that help make Prisma better for everyone!

7.4.1

Today, we are issuing a 7.4.1 patch release focused on bug fixes and quality improvements.

🛠 Fixes

Prisma Client

Fix cursor-based pagination regression with parameterised values (prisma/prisma#29184)

Preserve Prisma.skip through query extension argument cloning (prisma/prisma#29198)

Enable batching of multiple queries inside interactive transactions (prisma/prisma#25571)

Add missing JSON value deserialization for JSONB parameter fields (prisma/prisma#29182)

Apply result extensions correctly for nested and fluent relations (prisma/prisma#29218)

Allow missing config datasource URL and validate only when needed (prisma/prisma-engines#5777)

Driver Adapters

@prisma/adapter-ppg: Handle null values in type parsers for nullable columns (prisma/prisma#29192)

Prisma Schema Language

Support where argument on field-level @unique for partial indexes (prisma/prisma-engines#5774)

Add object expression and object member support to schema reformatter (prisma/prisma-engines#5776)

🙏 Huge thanks to our community

Many of the fixes in this release were contributed by our amazing community members. We're grateful for your continued support and contributions that help make Prisma better for everyone!

7.4.0

Today, we are excited to share the 7.4.0 stable release 🎉

... (truncated)

Commits

ac2bed1 chore: port fixes for 7.4.2 (#29270)
533e22a chore: port fixes to 7.4 patch branch (#29222)
7060f68 chore(deps): update engines to 7.4.0-20.ab56fe763f921d033a6c195e7ddeb3e255bdb...
91a24a9 feat: query plan caching (#29038)
b49d446 chore(deps): update engines to 7.4.0-18.2997580c8cb38878f73e100453e7b27119e8f...
3c99935 chore(deps): update engines to 7.4.0-17.57b675f79cd26fbf702d70f9a13d2b7b2fad9...
e7504d7 chore(deps): update engines to 7.4.0-16.d0314091cdd30494eefc61d346f8c09aca20d...
1e6c91c chore(deps): update engines to 7.4.0-15.6129681d45ea4510d3372dd5b28f6b8927584...
e1bfd22 chore(deps): update engines to 7.4.0-13.e876f7aec6b9be3e5147d061ed521ec45a845...
12ca969 chore(deps): update engines to 7.4.0-12.aa5ee090ba89988f1dce71be263f4bcd9519b...
Additional commits viewable in compare view

Updates better-auth from 1.4.7 to 1.5.0

Release notes

Sourced from better-auth's releases.

v1.5.0

Better Auth 1.5 Release

We’re excited to announce the release of Better Auth 1.5! 🎉

This is our biggest release yet, with over 600 commits, 70 new features, 200 bug fixes, and 7 entirely new packages. From MCP authentication to Electron desktop support, this release brings Better Auth to new platforms and use cases.

We’re also announcing our new Infrastructure product. It lets you use a full user management and analytics dashboard, security and protection tooling, audit logs, a self-service SSO UI, and more, all with your own Better Auth instance.

Starting with this release, the self-service SSO dashboard — which lets your enterprise customers onboard their own SAML providers without support tickets — is powered by Better Auth Infrastructure. If you’re using the SSO plugin in production, we recommend upgrading to the Pro or Business tier to get access to the dashboard and streamline your enterprise onboarding.

And soon, you’ll be able to host your Better Auth instance on our infrastructure as well, so you can own your auth at scale without worrying about infrastructure needs.

Sign up now: https://better-auth.com/sign-in 🚀

To upgrade, run:
npx auth upgrade
🚀 Highlights

New Better Auth CLI

We’re introducing a new standalone CLI: npx auth. This replaces the previous @better-auth/cli package, which will be deprecated in a future release.
npx auth init
With a single interactive command, npx auth init scaffolds a complete Better Auth setup — configuration file, database adapter, and framework integration.

All existing commands like migrate and generate are available through the new CLI as well:
npx auth migrate   # Run database migrations
npx auth generate  # Generate auth schema
npx auth upgrade   # Upgrade Better Auth to the latest version
The generate command now also supports a --adapter flag, letting you generate schema output tailored to your specific database adapter without needing a full Better Auth config file:
npx auth generate --adapter prisma
npx auth generate --adapter drizzle

... (truncated)

Commits

0ff021d chore: release v1.5.0
d727caf feat(client): add fallback support for VERCEL_URL and NEXTAUTH_URL (#6421)
859367a chore: lint
4eec4df feat(email-otp): add change email flow with OTP (#7968)
a63d31e fix(last-login-method): correctly handle multiple Set-Cookie headers (#7133)
07b8390 feat: support non-destructive key rotation for BETTER_AUTH_SECRET (#7738)
e2e560c fix: session listing endpoints returning empty arrays when >100 inactive sess...
33094f0 Revert "fix(oauth-proxy): add generic OAuth support to proxy (#8082)"
3fc0dd7 fix(organization): update path matching for active member signals (#7732)
81d83bb fix: preserve refresh token when provider omits it on refresh (#8001)
Additional commits viewable in compare view

Updates dotenv from 17.2.3 to 17.3.1

Changelog

Sourced from dotenv's changelog.

17.3.1 (2026-02-12)

Changed

Fix as2 example command in README and update spanish README

17.3.0 (2026-02-12)

Added

Add a new README section on dotenv’s approach to the agentic future.

Changed

Rewrite README to get humans started more quickly with less noise while simultaneously making more accessible for llms and agents to go deeper into details.

17.2.4 (2026-02-05)

Changed

Make DotenvPopulateInput accept NodeJS.ProcessEnv type (#915)

Give back to dotenv by checking out my newest project vestauth. It is auth for agents. Thank you for using my software.

Commits

7bc16a4 17.3.1
27303fd update README-es
6379eb2 update README
b6d7339 fix spelling
5febe35 17.3.0
f61f383 changelog 🪵
dec94ad update README
4856950 update README
6351887 update README
23bd017 update README
Additional commits viewable in compare view

Updates lucide-react from 0.561.0 to 0.575.0

Release notes

Sourced from lucide-react's releases.

Version 0.575.0

What's Changed

feat(icons): added message-square-check icon by @karsa-mistmere in lucide-icons/lucide#4076

fix(lucide): Fix ESM Module output path in build by @ericfennis in lucide-icons/lucide#4084

feat(icons): added metronome icon by @edwloef in lucide-icons/lucide#4063

fix(icons): remove execution permission of SVG files by @duckafire in lucide-icons/lucide#4053

fix(icons): changed file-pen-line icon by @jguddas in lucide-icons/lucide#3970

feat(icons): added square-arrow-right-exit and square-arrow-right-enter icons by @EthanHazel in lucide-icons/lucide#3958

fix(icons): renamed flip-* to square-centerline-dashed-* by @jguddas in lucide-icons/lucide#3945

New Contributors

@edwloef made their first contribution in lucide-icons/lucide#4063

@duckafire made their first contribution in lucide-icons/lucide#4053

Full Changelog: lucide-icons/lucide@0.573.0...0.575.0

Version 0.574.0

What's Changed

fix(icons): changed rocking-chair icon by @jamiemlaw in lucide-icons/lucide#3445

fix(icons): flipped coins icon by @jguddas in lucide-icons/lucide#3158

feat(icons): added x-line-top icon by @jguddas in lucide-icons/lucide#2838

feat(icons): added mouse-left icon by @marvfash in lucide-icons/lucide#2788

feat(icons): added mouse-right icon by @marvfash in lucide-icons/lucide#2787

New Contributors

@marvfash made their first contribution in lucide-icons/lucide#2788

Full Changelog: lucide-icons/lucide@0.572.0...0.574.0

Version 0.573.0

What's Changed

fix(icons): changed rocking-chair icon by @jamiemlaw in lucide-icons/lucide#3445

fix(icons): flipped coins icon by @jguddas in lucide-icons/lucide#3158

feat(icons): added x-line-top icon by @jguddas in lucide-icons/lucide#2838

feat(icons): added mouse-left icon by @marvfash in lucide-icons/lucide#2788

feat(icons): added mouse-right icon by @marvfash in lucide-icons/lucide#2787

New Contributors

@marvfash made their first contribution in lucide-icons/lucide#2788

Full Changelog: lucide-icons/lucide@0.572.0...0.573.0

Version 0.572.0

What's Changed

feat(icons): added message-circle-check icon by @Shrinks99 in lucide-icons/lucide#3770

New Contributors

@Shrinks99 made their first contribution in lucide-icons/lucide#3770

Full Changelog: lucide-icons/lucide@0.571.0...0.572.0

... (truncated)

Commits

67c0485 feat(scripts): added helper script to automatically update OpenCollective bac...
b6ed43d feat(packages): Added aria-hidden fallback for decorative icons to all packag...
See full diff in compare view

Updates next from 16.0.10 to 16.1.6

Release notes

Sourced from next's releases.

v16.1.6

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Upgrade to swc 54 (#88207)

implement LRU cache with invocation ID scoping for minimal mode response cache (#88509)

tweak LRU sentinel key (#89123)

Credits

Huge thanks to @mischnic, @wyattjoh, and @ztanner for helping!

v16.1.5

Please refer the following changelogs for more information about this security release:

https://vercel.com/changelog/summaries-of-cve-2025-59471-and-cve-2025-59472 https://vercel.com/changelog/summary-of-cve-2026-23864

v16.1.4

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Only filter next config if experimental flag is enabled (#88733)

Credits

Huge thanks to @mischnic for helping!

v16.1.3

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

Fix linked list bug in LRU deleteFromLru (#88652)

Fix relative same host redirects in node middleware (#88253)

Credits

Huge thanks to @acdlite and @ijjk for helping!

v16.1.2

[!NOTE] This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

... (truncated)

Commits

adf8c61 v16.1.6
098c0c0 [backport][ci] Make gh auth status optional when triggering a release (#89100)
a43df32 Backport/docs fixes jan 25 16.1.x (#89124)
d6d5734 tweak LRU sentinel cache key (#89123)
4324698 backport: implement LRU cache with invocation ID scoping for minimal mode res...
23c4649 [backport] Upgrade to swc 54 (#88207) (#89103)
acba4a6 v16.1.5
e1d1fc6 Add maximum size limit for postponed body parsing (#88175)
500ec83 fetch(next/image): reduce maximumResponseBody from 300MB to 50MB (#88588)
1caaca3 feat(next/image)!: add images.maximumResponseBody config (#88183)
Additional commits viewable in compare view

Updates pg from 8.16.3 to 8.19.0

Changelog

Sourced from pg's changelog.

pg@8.19.0

Deprecate interal query queue.

Pass connection parameters to password callback.

pg@8.18.0

Return the client instance as the result of calling connect (previously it was void).

pg@8.17.0

Throw correct error if database URL parsing fails.

pg@8.16.0

Add support for min connection pool size.

pg@8.15.0

Add support for esm importing. CommonJS importing is still also supported.

pg@8.14.0

Add support from SCRAM-SAH-256-PLUS i.e. channel binding.

pg@8.13.0

Add ability to specify query timeout on per-query basis.

pg@8.12.0

Add queryMode config option to force use of the extended query protocol on queries without any parameters.

pg-pool@8.10.0

Emit release event when client is returned to the pool.

pg@8.9.0

Add support for stream factory.

Better errors for SASL authentication.

Use native crypto module for SASL authentication.

pg@8.8.0

Bump minimum required version of native bindings.

Catch previously uncatchable errors thrown in pool.query.

Prevent the pool from blocking the event loop if all clients are idle (and allowExitOnIdle is enabled).

Support lock_timeout in client config.

Fix errors thrown in callbacks from interfering with cleanup.

... (truncated)

Commits

f2d7d11 Publish
5a4bafc Deprecate Client's internal query queue (#3603)
a215bfb Typo fix in PgPass deprecation (funciton) (#3605)
01e0556 fix(pg-query-stream): invoke this.callback on cursor end/error (#2810)
e6e3692 Pass connection parameters to password callback (#3602)
d80d883 test: Fix TLS connection test ending too early
f332f28 fix: Connection timeout handling for native clients in connected state (#3512)
b2e9cb1 Remove testAsync - its redundant (#3588)
46cdf9e [fix] fix unhandled callback error for submittables (#3589)
fc4de3c Publish
Additional commits viewable in compare view

Updates prisma from 7.1.0 to 7.4.2

Release notes

Sourced from prisma's releases.

7.4.2

Today, we are issuing a 7.4.2 patch release focused on bug fixes and quality improvements.

🛠 Fixes

Prisma Client

Fix a case-insensitive IN and NOT IN filter regression (prisma/prisma#29243)

Fix a query plan mutation issue that resulted in broken cursor queries (prisma/prisma#29262)

Fix an array parameter wrapping issue in push operations (prisma/prisma-engines#5784)

Fix Uint8Array serialization in nested JSON fields (prisma/prisma#29268)

Fix an issue with MySQL joins that relied on non-strict equality (prisma/prisma#29251)

Driver Adapters

@prisma/adapter-mariadb: Update text column detection to check for a binary collation (prisma/prisma#29238)

@prisma/adapter-mariadb: Correct relationJoins compatibility check for MariaDB 8.x versions (prisma/prisma#29246)

Schema Engine

Fix partial index predicate comparison on PostgreSQL and MSSQL (prisma/prisma-engines#5780)

🙏 Huge thanks to our community

Many of the fixes in this release were contributed by our amazing community members. We're grateful for your continued support and contributions that help make Prisma better for everyone!

7.4.1

Today, we are issuing a 7.4.1 patch release focused on bug fixes and quality improvements.

🛠 Fixes

Prisma Client

Fix cursor-based pagination regression with parameterised values (prisma/prisma#29184)

Preserve Prisma.skip through query extension argument cloning (prisma/prisma#29198)

Enable batching of multiple queries inside interactive transactions (prisma/prisma#25571)

Add missing JSON value deserialization for JSONB parameter fields (prisma/prisma#29182)

Apply result extensions correctly for nested and fluent relations (prisma/prisma#29218)

Allow missing config datasource URL and validate only when needed (prisma/prisma-engines#5777)

Driver Adapters

@prisma/adapter-ppg: Handle null values in type parsers for nullable columns (prisma/prisma#29192)

Prisma Schema Language

Support where argument on field-level @unique for partial indexes (prisma/prisma-engines#5774)

Add object expression and object member support to schema reformatter (prisma/prisma-engines#5776)

🙏 Huge thanks to our community

Many of the fixes in this release were contributed by our amazing community members. We're grateful for your continued support and contributions that help make Prisma better for everyone!

7.4.0

Today, we are excited to share the 7.4.0 stable release 🎉

... (truncated)

Commits

1df1c6d fix(cli-generator): outdated default generator provider (#29089)
710c25d fix: update dependencies to fix pnpm audit (#29128)
fdabc1c fix(cli): remove Prisma Pulse from CLI help message (#29093)
1677a32 docs: fix broken getting started links across repository (#28948)
32e5614 chore(cli): bump hono and @prisma/dev, resolving hono vulnerability. (#...
2a44bb8 chore(cli): bump studio, fixing vitess introspection. (#29045)
011b6a6 chore: remove promotions (#29015)
90141bb chore(cli): bump studio, add northwind to sandbox. (#28985)
fd479fd feat(qc): fast and small build modes (#28976)
815ba13 chore(cli): bump @prisma/dev, fix init usage following changes. (#28929)
Additional commits viewable in compare view

Updates react from 19.2.3 to 19.2.4

Release notes

Sourced from react's releases.

19.2.4 (January 26th, 2026)

React Server Components

Add more DoS mitigations to Server Actions, and harden Server Components (#35632 by @gnoff, @lubieowoce, @sebmarkbage, @unstubbable)

Commits

90ab3f8 Version 19.2.4
See full diff in compare view

Updates react-dom from 19.2.3 to 19.2.4

Release notes

Sourced from react-dom's releases.

19.2.4 (January 26th, 2026)

React Server Components

Add more DoS mitigations to Server Actions, and harden Server Components (#35632 by @gnoff, @lubieowoce, @sebmarkbage, @unstubbable)

Commits

90ab3f8 Version 19.2.4
See full diff in compare view

Updates tailwind-merge from 3.4.0 to 3.5.0

Release notes

Sourced from tailwind-merge's releases.

v3.5.0

New Features

Add support for Tailwind CSS v4.2 by @dcastil in dcastil/tailwind-merge#651

Full Changelog: dcastil/tailwind-merge@v3.4.1...v3.5.0

Thanks to @brandonmcconnell, @manavm1990, @langy, @roboflow, @syntaxfm, @getsentry, @codecov, a private sponsor, @block, @openclaw, @sourcegraph and more via @thnxdev for sponsoring tailwind-merge! ❤️

v3.4.1

Bug Fixes

Prevent arbitrary font-family and font-weight from merging by @roneymoon in dcastil/tailwind-merge#635

Full Changelog: dcastil/tailwind-merge@v3.4.0...v3.4.1

Thanks to @brandonmcconnell, @manavm1990, @langy, @roboflow, @syntaxfm, @getsentry, @codecov, a private sponsor, @block, @openclaw, @sourcegraph and more via @thnxdev for sponsoring tailwind-merge! ❤️

Commits

270ac79 v3.5.0
86f772e add changelog for 3.5.0
6c1f77c Merge pull request #651 from dcastil/feature/add-support-for-tailwind-css-v4.2
7a4cacf Add support for decimal fraction values
9ef0f79 fix incorrectly escaped characters
f4938b0 update README with v4.2 support
b02a572 Add Tailwind v4.2 font-features utilities support
5bd25ec Add Tailwind v4.2 logical sizing utilities
697c920 Add Tailwind v4.2 logical border block utilities
6656a47 Improve JSDoc comments for logical insets
Additional commits viewable in compare view

Updates zod from 4.2.0 to 4.3.6

Release notes

Sourced from zod's releases.

v4.3.6

Commits:

9977fb0868432461de265a773319e80a90ba3e37 Add brand.dev to sponsors

f4b7bae3468f6188b8f004e007d722148fc91d77 Update pullfrog.yml (#5634)

251d7163a0ac7740fee741428d913e3c55702ace Clean up workflow_call

edd4132466da0f5065a8e051b599d01fdd1081d8 fix: add missing User-agent to robots.txt and allow all (#5646)

85db85e9091d0706910d60c7eb2e9c181edd87bd fix: typo in codec.test.ts file (

…0 updates Bumps the minor-and-patch group with 20 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@formatjs/intl-localematcher](https://github.com/formatjs/formatjs) | `0.7.1` | `0.8.1` | | [@paralleldrive/cuid2](https://github.com/ericelliott/cuid2) | `3.0.4` | `3.3.0` | | [@prisma/adapter-pg](https://github.com/prisma/prisma/tree/HEAD/packages/adapter-pg) | `7.1.0` | `7.4.2` | | [@prisma/client](https://github.com/prisma/prisma/tree/HEAD/packages/client) | `7.1.0` | `7.4.2` | | [better-auth](https://github.com/better-auth/better-auth/tree/HEAD/packages/better-auth) | `1.4.7` | `1.5.0` | | [dotenv](https://github.com/motdotla/dotenv) | `17.2.3` | `17.3.1` | | [lucide-react](https://github.com/lucide-icons/lucide/tree/HEAD/packages/lucide-react) | `0.561.0` | `0.575.0` | | [next](https://github.com/vercel/next.js) | `16.0.10` | `16.1.6` | | [pg](https://github.com/brianc/node-postgres/tree/HEAD/packages/pg) | `8.16.3` | `8.19.0` | | [prisma](https://github.com/prisma/prisma/tree/HEAD/packages/cli) | `7.1.0` | `7.4.2` | | [react](https://github.com/facebook/react/tree/HEAD/packages/react) | `19.2.3` | `19.2.4` | | [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) | `19.2.3` | `19.2.4` | | [tailwind-merge](https://github.com/dcastil/tailwind-merge) | `3.4.0` | `3.5.0` | | [zod](https://github.com/colinhacks/zod) | `4.2.0` | `4.3.6` | | [@commitlint/cli](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/cli) | `20.2.0` | `20.4.2` | | [@commitlint/config-conventional](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/config-conventional) | `20.2.0` | `20.4.2` | | [@tailwindcss/postcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/@tailwindcss-postcss) | `4.1.18` | `4.2.1` | | [lint-staged](https://github.com/lint-staged/lint-staged) | `16.2.7` | `16.3.1` | | [prettier](https://github.com/prettier/prettier) | `3.7.4` | `3.8.1` | | [tailwindcss](https://github.com/tailwindlabs/tailwindcss/tree/HEAD/packages/tailwindcss) | `4.1.18` | `4.2.1` | Updates `@formatjs/intl-localematcher` from 0.7.1 to 0.8.1 - [Release notes](https://github.com/formatjs/formatjs/releases) - [Commits](https://github.com/formatjs/formatjs/compare/@formatjs/intl-localematcher@0.7.1...@formatjs/intl-localematcher@0.8.1) Updates `@paralleldrive/cuid2` from 3.0.4 to 3.3.0 - [Changelog](https://github.com/paralleldrive/cuid2/blob/main/CHANGELOG.md) - [Commits](paralleldrive/cuid2@v3.0.4...v3.3.0) Updates `@prisma/adapter-pg` from 7.1.0 to 7.4.2 - [Release notes](https://github.com/prisma/prisma/releases) - [Commits](https://github.com/prisma/prisma/commits/7.4.2/packages/adapter-pg) Updates `@prisma/client` from 7.1.0 to 7.4.2 - [Release notes](https://github.com/prisma/prisma/releases) - [Commits](https://github.com/prisma/prisma/commits/7.4.2/packages/client) Updates `better-auth` from 1.4.7 to 1.5.0 - [Release notes](https://github.com/better-auth/better-auth/releases) - [Commits](https://github.com/better-auth/better-auth/commits/v1.5.0/packages/better-auth) Updates `dotenv` from 17.2.3 to 17.3.1 - [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md) - [Commits](motdotla/dotenv@v17.2.3...v17.3.1) Updates `lucide-react` from 0.561.0 to 0.575.0 - [Release notes](https://github.com/lucide-icons/lucide/releases) - [Commits](https://github.com/lucide-icons/lucide/commits/0.575.0/packages/lucide-react) Updates `next` from 16.0.10 to 16.1.6 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v16.0.10...v16.1.6) Updates `pg` from 8.16.3 to 8.19.0 - [Changelog](https://github.com/brianc/node-postgres/blob/master/CHANGELOG.md) - [Commits](https://github.com/brianc/node-postgres/commits/pg@8.19.0/packages/pg) Updates `prisma` from 7.1.0 to 7.4.2 - [Release notes](https://github.com/prisma/prisma/releases) - [Commits](https://github.com/prisma/prisma/commits/7.4.2/packages/cli) Updates `react` from 19.2.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react) Updates `react-dom` from 19.2.3 to 19.2.4 - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/main/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v19.2.4/packages/react-dom) Updates `tailwind-merge` from 3.4.0 to 3.5.0 - [Release notes](https://github.com/dcastil/tailwind-merge/releases) - [Commits](dcastil/tailwind-merge@v3.4.0...v3.5.0) Updates `zod` from 4.2.0 to 4.3.6 - [Release notes](https://github.com/colinhacks/zod/releases) - [Commits](colinhacks/zod@v4.2.0...v4.3.6) Updates `@commitlint/cli` from 20.2.0 to 20.4.2 - [Release notes](https://github.com/conventional-changelog/commitlint/releases) - [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/cli/CHANGELOG.md) - [Commits](https://github.com/conventional-changelog/commitlint/commits/v20.4.2/@commitlint/cli) Updates `@commitlint/config-conventional` from 20.2.0 to 20.4.2 - [Release notes](https://github.com/conventional-changelog/commitlint/releases) - [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/config-conventional/CHANGELOG.md) - [Commits](https://github.com/conventional-changelog/commitlint/commits/v20.4.2/@commitlint/config-conventional) Updates `@tailwindcss/postcss` from 4.1.18 to 4.2.1 - [Release notes](https://github.com/tailwindlabs/tailwindcss/releases) - [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/tailwindlabs/tailwindcss/commits/v4.2.1/packages/@tailwindcss-postcss) Updates `lint-staged` from 16.2.7 to 16.3.1 - [Release notes](https://github.com/lint-staged/lint-staged/releases) - [Changelog](https://github.com/lint-staged/lint-staged/blob/main/CHANGELOG.md) - [Commits](lint-staged/lint-staged@v16.2.7...v16.3.1) Updates `prettier` from 3.7.4 to 3.8.1 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](prettier/prettier@3.7.4...3.8.1) Updates `tailwindcss` from 4.1.18 to 4.2.1 - [Release notes](https://github.com/tailwindlabs/tailwindcss/releases) - [Changelog](https://github.com/tailwindlabs/tailwindcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/tailwindlabs/tailwindcss/commits/v4.2.1/packages/tailwindcss) --- updated-dependencies: - dependency-name: "@formatjs/intl-localematcher" dependency-version: 0.8.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@paralleldrive/cuid2" dependency-version: 3.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@prisma/adapter-pg" dependency-version: 7.4.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@prisma/client" dependency-version: 7.4.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: better-auth dependency-version: 1.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: dotenv dependency-version: 17.3.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: lucide-react dependency-version: 0.575.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: next dependency-version: 16.1.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: pg dependency-version: 8.19.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: prisma dependency-version: 7.4.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: react dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: react-dom dependency-version: 19.2.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: tailwind-merge dependency-version: 3.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: zod dependency-version: 4.3.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@commitlint/cli" dependency-version: 20.4.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@commitlint/config-conventional" dependency-version: 20.4.2 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: "@tailwindcss/postcss" dependency-version: 4.2.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: lint-staged dependency-version: 16.3.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: prettier dependency-version: 3.8.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: tailwindcss dependency-version: 4.2.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: minor-and-patch ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 2, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the minor-and-patch group across 1 directory with 20 updates#72

build(deps): bump the minor-and-patch group across 1 directory with 20 updates#72
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/minor-and-patch-41fec100f8

dependabot bot commented on behalf of github Mar 2, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Mar 2, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

@​formatjs/intl-localematcher@​0.8.0

0.8.0 (2026-01-15)

Features

@​formatjs/intl-localematcher@​0.7.3

0.7.3 (2025-12-23)

Bug Fixes

[3.3.0] - 2026-01-25

Fixed

Updated

[3.0.2] - 2025-10-27

Changed

Fixed

Added

Documentation

[3.0.0] - 2025-10-18

⚠️ BREAKING CHANGES

[2.3.1] - 2025-10-24

Fixed

7.4.2

🛠 Fixes

🙏 Huge thanks to our community

7.4.1

🛠 Fixes

🙏 Huge thanks to our community

7.4.0

7.4.2

🛠 Fixes

🙏 Huge thanks to our community

7.4.1

🛠 Fixes

🙏 Huge thanks to our community

7.4.0

v1.5.0

Better Auth 1.5 Release

🚀 Highlights

New Better Auth CLI

17.3.1 (2026-02-12)

Changed

17.3.0 (2026-02-12)

Added

Changed

17.2.4 (2026-02-05)

Changed

Version 0.575.0

What's Changed

New Contributors

Version 0.574.0

What's Changed

New Contributors

Version 0.573.0

What's Changed

New Contributors

Version 0.572.0

What's Changed

New Contributors

v16.1.6

Core Changes

Credits

v16.1.5

v16.1.4

Core Changes

Credits

v16.1.3

Core Changes

Credits

v16.1.2

Core Changes

pg@8.19.0

pg@8.18.0

pg@8.17.0

pg@8.16.0

pg@8.15.0

pg@8.14.0

pg@8.13.0

pg@8.12.0

pg-pool@8.10.0

pg@8.9.0

dependabot bot commented on behalf of github Mar 2, 2026 •

edited

Loading

`@formatjs/intl-localematcher@0`.8.0

`@formatjs/intl-localematcher@0`.7.3