build(deps): bump the inkeep-agents group across 1 directory with 9 updates by dependabot[bot] · Pull Request #2869 · inkeep/agents

dependabot · 2026-03-27T18:49:52Z

Bumps the inkeep-agents group with 5 updates in the /create-agents-template directory:

Package	From	To
@inkeep/agents-core	`0.59.4`	`0.72.1`
@inkeep/agents-manage-ui	`0.59.4`	`0.72.1`
@inkeep/agents-sdk	`0.59.4`	`0.72.1`
@inkeep/agents-cli	`0.59.4`	`0.72.1`
@inkeep/agents-api	`0.59.4`	`0.72.1`

Updates @inkeep/agents-core from 0.59.4 to 0.72.1

Release notes

Sourced from @inkeep/agents-core's releases.

... (truncated)

Changelog

Sourced from @inkeep/agents-core's changelog.

... (truncated)

Commits

See full diff in compare view

Updates @inkeep/agents-manage-ui from 0.59.4 to 0.72.1

Release notes

Sourced from @inkeep/agents-manage-ui's releases.

... (truncated)

Changelog

Sourced from @inkeep/agents-manage-ui's changelog.

... (truncated)

Commits

See full diff in compare view

Updates @inkeep/agents-sdk from 0.59.4 to 0.72.1

Release notes

Sourced from @inkeep/agents-sdk's releases.

... (truncated)

Changelog

Sourced from @inkeep/agents-sdk's changelog.

... (truncated)

Commits

See full diff in compare view

Updates @inkeep/agents-cli from 0.59.4 to 0.72.1

Release notes

Sourced from @inkeep/agents-cli's releases.

... (truncated)

Changelog

Sourced from @inkeep/agents-cli's changelog.

... (truncated)

Commits

See full diff in compare view

Updates @inkeep/agents-api from 0.59.4 to 0.72.1

Release notes

Sourced from @inkeep/agents-api's releases.

... (truncated)

Changelog

Sourced from @inkeep/agents-api's changelog.

... (truncated)

Commits

See full diff in compare view

Updates @inkeep/agents-email from 0.59.4 to 0.72.1

Release notes

Sourced from @inkeep/agents-email's releases.

... (truncated)

Changelog

Sourced from @inkeep/agents-email's changelog.

... (truncated)

Commits

See full diff in compare view

Updates @inkeep/agents-mcp from 0.59.4 to 0.72.1

Release notes

Sourced from @inkeep/agents-mcp's releases.

... (truncated)

Changelog

Sourced from @inkeep/agents-mcp's changelog.

... (truncated)

Commits

See full diff in compare view

Updates @inkeep/agents-ui from 0.15.20 to 0.15.30

Commits

See full diff in compare view

Updates @inkeep/agents-work-apps from 0.59.4 to 0.72.1

Release notes

Sourced from @inkeep/agents-work-apps's releases.

... (truncated)

Commits

See full diff in compare view

vercel · 2026-03-27T18:49:57Z

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
agents-api	Ready	Preview, Comment	Apr 15, 2026 6:54pm
agents-docs	Ready	Preview, Comment	Apr 15, 2026 6:54pm
agents-manage-ui	Ready	Preview, Comment	Apr 15, 2026 6:54pm

changeset-bot · 2026-03-27T18:50:29Z

⚠️ No Changeset found

Latest commit: d8d4bdb

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

socket-security · 2026-04-01T19:35:37Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		Obfuscated code: npm `@electric-sql/pglite` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/pnpm-lock.yaml → `npm/@inkeep/agents-api@0.72.1` → `npm/@inkeep/agents-core@0.72.1` → `npm/@electric-sql/pglite@0.3.16` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@electric-sql/pglite@0.3.16`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@esbuild/aix-ppc64` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/pnpm-lock.yaml → `npm/@esbuild/aix-ppc64@0.25.10` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@esbuild/aix-ppc64@0.25.10`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Potentially malicious package (AI signal): npm `@inkeep/agents-manage-ui` is 60.0% likely malicious Notes: This module is security-sensitive and contains a clear arbitrary code execution mechanism: it can fetch remote SVG content, extract embedded inline <script> content, and execute it in the browser using Function(scriptText)(window) when enabled by an evalScripts policy. This is a direct high-impact sink consistent with supply-chain/XSS exploitation. Additional risk is present from DOM injection and dangerouslySetInnerHTML usage. Treat the package as high risk pending verification of default evalScripts behavior and strict sanitization/origin controls for any SVG-loading inputs. Confidence: 0.60 Severity: 0.90 From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is AI-detected potential malware? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Given the AI system's identification of this package as malware, extreme caution is advised. It is recommended to avoid downloading or installing this package until the threat is confirmed or flagged as a false positive. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@inkeep/agents-manage-ui` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/package.json → `npm/@inkeep/agents-manage-ui@0.72.1` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@inkeep/agents-manage-ui@0.72.1`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@sentry/core` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/pnpm-lock.yaml → `npm/@inkeep/agents-manage-ui@0.72.1` → `npm/@sentry/core@10.52.0` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@sentry/core@10.52.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@sentry/node-core` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: create-agents-template/pnpm-lock.yaml → `npm/@inkeep/agents-manage-ui@0.72.1` → `npm/@sentry/node-core@10.52.0` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@sentry/node-core@10.52.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

github-actions · 2026-04-13T19:55:04Z

A matching internal PR is ready in inkeep/agents-private#80 for canonical review and merge.

Original author attribution is preserved as @dependabot[bot]
The internal PR is the authoritative merge surface
The public repo will pick up the merged change through the normal mirror sync

This comment will be updated as the bridge state changes.

…pdates Bumps the inkeep-agents group with 5 updates in the /create-agents-template directory: | Package | From | To | | --- | --- | --- | | [@inkeep/agents-core](https://github.com/inkeep/agents/tree/HEAD/packages/agents-core) | `0.59.4` | `0.72.1` | | [@inkeep/agents-manage-ui](https://github.com/inkeep/agents/tree/HEAD/agents-manage-ui) | `0.59.4` | `0.72.1` | | [@inkeep/agents-sdk](https://github.com/inkeep/agents/tree/HEAD/packages/agents-sdk) | `0.59.4` | `0.72.1` | | [@inkeep/agents-cli](https://github.com/inkeep/agents/tree/HEAD/agents-cli) | `0.59.4` | `0.72.1` | | [@inkeep/agents-api](https://github.com/inkeep/agents/tree/HEAD/agents-api) | `0.59.4` | `0.72.1` | Updates `@inkeep/agents-core` from 0.59.4 to 0.72.1 - [Release notes](https://github.com/inkeep/agents/releases) - [Changelog](https://github.com/inkeep/agents/blob/main/packages/agents-core/CHANGELOG.md) - [Commits](https://github.com/inkeep/agents/commits/HEAD/packages/agents-core) Updates `@inkeep/agents-manage-ui` from 0.59.4 to 0.72.1 - [Release notes](https://github.com/inkeep/agents/releases) - [Changelog](https://github.com/inkeep/agents/blob/main/agents-manage-ui/CHANGELOG.md) - [Commits](https://github.com/inkeep/agents/commits/HEAD/agents-manage-ui) Updates `@inkeep/agents-sdk` from 0.59.4 to 0.72.1 - [Release notes](https://github.com/inkeep/agents/releases) - [Changelog](https://github.com/inkeep/agents/blob/main/packages/agents-sdk/CHANGELOG.md) - [Commits](https://github.com/inkeep/agents/commits/HEAD/packages/agents-sdk) Updates `@inkeep/agents-cli` from 0.59.4 to 0.72.1 - [Release notes](https://github.com/inkeep/agents/releases) - [Changelog](https://github.com/inkeep/agents/blob/main/agents-cli/CHANGELOG.md) - [Commits](https://github.com/inkeep/agents/commits/HEAD/agents-cli) Updates `@inkeep/agents-api` from 0.59.4 to 0.72.1 - [Release notes](https://github.com/inkeep/agents/releases) - [Changelog](https://github.com/inkeep/agents/blob/main/agents-api/CHANGELOG.md) - [Commits](https://github.com/inkeep/agents/commits/HEAD/agents-api) Updates `@inkeep/agents-email` from 0.59.4 to 0.72.1 - [Release notes](https://github.com/inkeep/agents/releases) - [Changelog](https://github.com/inkeep/agents/blob/main/packages/agents-email/CHANGELOG.md) - [Commits](https://github.com/inkeep/agents/commits/HEAD/packages/agents-email) Updates `@inkeep/agents-mcp` from 0.59.4 to 0.72.1 - [Release notes](https://github.com/inkeep/agents/releases) - [Changelog](https://github.com/inkeep/agents/blob/main/packages/agents-mcp/CHANGELOG.md) - [Commits](https://github.com/inkeep/agents/commits/HEAD/packages/agents-mcp) Updates `@inkeep/agents-ui` from 0.15.20 to 0.15.30 - [Commits](https://github.com/inkeep/agents-ui/commits/HEAD/packages/agents-ui) Updates `@inkeep/agents-work-apps` from 0.59.4 to 0.72.1 - [Release notes](https://github.com/inkeep/agents/releases) - [Commits](https://github.com/inkeep/agents/commits/HEAD/packages/agents-workapps) --- updated-dependencies: - dependency-name: "@inkeep/agents-api" dependency-version: 0.62.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: inkeep-agents - dependency-name: "@inkeep/agents-cli" dependency-version: 0.62.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: inkeep-agents - dependency-name: "@inkeep/agents-core" dependency-version: 0.62.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: inkeep-agents - dependency-name: "@inkeep/agents-email" dependency-version: 0.62.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: inkeep-agents - dependency-name: "@inkeep/agents-manage-ui" dependency-version: 0.62.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: inkeep-agents - dependency-name: "@inkeep/agents-mcp" dependency-version: 0.62.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: inkeep-agents - dependency-name: "@inkeep/agents-sdk" dependency-version: 0.62.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: inkeep-agents - dependency-name: "@inkeep/agents-ui" dependency-version: 0.15.21 dependency-type: indirect update-type: version-update:semver-patch dependency-group: inkeep-agents - dependency-name: "@inkeep/agents-work-apps" dependency-version: 0.62.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: inkeep-agents ... Signed-off-by: dependabot[bot] <support@github.com>

socket-security · 2026-05-12T01:55:55Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Package	Supply Chain Security	Quality	Maintenance
@inkeep/agents-manage-ui@0.41.1 ⏵ 0.72.1	^-48
@inkeep/agents-cli@0.72.1
@inkeep/agents-api@0.72.1
@inkeep/agents-sdk@0.72.1
@hono/vite-dev-server@0.20.1 ⏵ 0.23.0		⁺¹	^-2

View full report

dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Mar 27, 2026

vercel Bot deployed to Preview – agents-manage-ui March 27, 2026 18:51 View deployment

vercel Bot deployed to Preview – agents-docs March 27, 2026 18:52 View deployment

vercel Bot deployed to Preview – agents-api March 27, 2026 18:52 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22 branch from b21abdf to 105aa2b Compare March 30, 2026 20:08

vercel Bot deployed to Preview – agents-manage-ui March 30, 2026 20:10 View deployment

vercel Bot deployed to Preview – agents-docs March 30, 2026 20:11 View deployment

vercel Bot deployed to Preview – agents-api March 30, 2026 20:11 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22 branch from 105aa2b to 24d1441 Compare March 31, 2026 18:50

vercel Bot deployed to Preview – agents-manage-ui March 31, 2026 18:52 View deployment

vercel Bot deployed to Preview – agents-docs March 31, 2026 18:53 View deployment

vercel Bot deployed to Preview – agents-api March 31, 2026 18:53 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22 branch from 24d1441 to 465e081 Compare April 1, 2026 19:30

vercel Bot deployed to Preview – agents-docs April 1, 2026 19:33 View deployment

vercel Bot deployed to Preview – agents-manage-ui April 1, 2026 19:33 View deployment

vercel Bot deployed to Preview – agents-api April 1, 2026 19:33 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22 branch from 465e081 to fa1b4e2 Compare April 1, 2026 23:40

vercel Bot deployed to Preview – agents-manage-ui April 1, 2026 23:42 View deployment

vercel Bot deployed to Preview – agents-api April 1, 2026 23:43 View deployment

vercel Bot deployed to Preview – agents-docs April 1, 2026 23:43 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22 branch from fa1b4e2 to 5e49776 Compare April 2, 2026 18:52

vercel Bot deployed to Preview – agents-api April 2, 2026 18:55 View deployment

vercel Bot deployed to Preview – agents-manage-ui April 2, 2026 18:56 View deployment

vercel Bot deployed to Preview – agents-docs April 2, 2026 18:56 View deployment

vercel Bot deployed to Preview – agents-docs April 7, 2026 18:53 View deployment

vercel Bot deployed to Preview – agents-api April 7, 2026 18:54 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22 branch from e161f0a to dc003ba Compare April 8, 2026 18:50

vercel Bot deployed to Preview – agents-manage-ui April 8, 2026 18:52 View deployment

vercel Bot deployed to Preview – agents-docs April 8, 2026 18:53 View deployment

vercel Bot deployed to Preview – agents-api April 8, 2026 18:54 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22 branch from dc003ba to 983d23f Compare April 8, 2026 18:56

vercel Bot deployed to Preview – agents-manage-ui April 8, 2026 18:57 View deployment

vercel Bot deployed to Preview – agents-docs April 8, 2026 18:58 View deployment

vercel Bot deployed to Preview – agents-api April 8, 2026 18:59 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22 branch from 983d23f to c09a6bd Compare April 9, 2026 18:50

vercel Bot deployed to Preview – agents-manage-ui April 9, 2026 18:52 View deployment

vercel Bot deployed to Preview – agents-docs April 9, 2026 18:53 View deployment

vercel Bot deployed to Preview – agents-api April 9, 2026 18:54 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22 branch from c09a6bd to 006b8ee Compare April 10, 2026 18:49

vercel Bot deployed to Preview – agents-manage-ui April 10, 2026 18:51 View deployment

vercel Bot deployed to Preview – agents-docs April 10, 2026 18:52 View deployment

vercel Bot deployed to Preview – agents-api April 10, 2026 18:53 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22 branch from 006b8ee to 93a5810 Compare April 13, 2026 19:59

vercel Bot deployed to Preview – agents-docs April 13, 2026 20:02 View deployment

vercel Bot deployed to Preview – agents-manage-ui April 13, 2026 20:02 View deployment

vercel Bot deployed to Preview – agents-api April 13, 2026 20:02 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22 branch from 93a5810 to 445e94d Compare April 14, 2026 18:50

vercel Bot deployed to Preview – agents-manage-ui April 14, 2026 18:52 View deployment

vercel Bot deployed to Preview – agents-docs April 14, 2026 18:53 View deployment

vercel Bot deployed to Preview – agents-api April 14, 2026 18:54 View deployment

dependabot Bot force-pushed the dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22 branch from 445e94d to ffe4636 Compare April 15, 2026 18:50

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the inkeep-agents group across 1 directory with 9 updates#2869

build(deps): bump the inkeep-agents group across 1 directory with 9 updates#2869
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/create-agents-template/inkeep-agents-6c0cc75f22

dependabot Bot commented on behalf of github Mar 27, 2026 •

edited

Loading

Uh oh!

vercel Bot commented Mar 27, 2026 •

edited

Loading

Uh oh!

changeset-bot Bot commented Mar 27, 2026 •

edited

Loading

Uh oh!

socket-security Bot commented Apr 1, 2026 •

edited

Loading

Uh oh!

github-actions Bot commented Apr 13, 2026

Uh oh!

socket-security Bot commented May 12, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Mar 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

2026-04-15

Changelog

@​inkeep/agents-api@​0.68.4

Patch Changes

@​inkeep/agents-cli@​0.68.4

Patch Changes

@​inkeep/agents-manage-ui@​0.68.4

Patch Changes

@​inkeep/agents-sdk@​0.68.4

Patch Changes

@​inkeep/agents-work-apps@​0.68.4

Patch Changes

@​inkeep/ai-sdk-provider@​0.68.4

Patch Changes

@​inkeep/create-agents@​0.68.4

Patch Changes

0.72.1

Patch Changes

0.72.0

Minor Changes

Patch Changes

0.71.0

Minor Changes

Patch Changes

0.70.8

0.70.7

Patch Changes

0.70.6

0.70.5

Patch Changes

2026-04-15

Changelog

@​inkeep/agents-api@​0.68.4

Patch Changes

@​inkeep/agents-cli@​0.68.4

Patch Changes

@​inkeep/agents-manage-ui@​0.68.4

Patch Changes

@​inkeep/agents-sdk@​0.68.4

Patch Changes

@​inkeep/agents-work-apps@​0.68.4

Patch Changes

@​inkeep/ai-sdk-provider@​0.68.4

Patch Changes

@​inkeep/create-agents@​0.68.4

Patch Changes

0.72.1

Patch Changes

0.72.0

Patch Changes

0.71.0

Minor Changes

Patch Changes

0.70.8

Patch Changes

0.70.7

Patch Changes

2026-04-15

Changelog

@​inkeep/agents-api@​0.68.4

Patch Changes

@​inkeep/agents-cli@​0.68.4

Patch Changes

@​inkeep/agents-manage-ui@​0.68.4

Patch Changes

@​inkeep/agents-sdk@​0.68.4

Patch Changes

@​inkeep/agents-work-apps@​0.68.4

Patch Changes

@​inkeep/ai-sdk-provider@​0.68.4

Patch Changes

@​inkeep/create-agents@​0.68.4

Patch Changes

0.72.1

Patch Changes

0.72.0

Patch Changes

dependabot Bot commented on behalf of github Mar 27, 2026 •

edited

Loading

`@inkeep/agents-api@0`.68.4

`@inkeep/agents-cli@0`.68.4

`@inkeep/agents-manage-ui@0`.68.4

`@inkeep/agents-sdk@0`.68.4

`@inkeep/agents-work-apps@0`.68.4

`@inkeep/ai-sdk-provider@0`.68.4

`@inkeep/create-agents@0`.68.4

`@inkeep/agents-api@0`.68.4

`@inkeep/agents-cli@0`.68.4

`@inkeep/agents-manage-ui@0`.68.4

`@inkeep/agents-sdk@0`.68.4

`@inkeep/agents-work-apps@0`.68.4

`@inkeep/ai-sdk-provider@0`.68.4

`@inkeep/create-agents@0`.68.4

`@inkeep/agents-api@0`.68.4

`@inkeep/agents-cli@0`.68.4

`@inkeep/agents-manage-ui@0`.68.4

`@inkeep/agents-sdk@0`.68.4

`@inkeep/agents-work-apps@0`.68.4

`@inkeep/ai-sdk-provider@0`.68.4

`@inkeep/create-agents@0`.68.4

`@inkeep/agents-api@0`.68.4

`@inkeep/agents-cli@0`.68.4

`@inkeep/agents-manage-ui@0`.68.4

`@inkeep/agents-sdk@0`.68.4

`@inkeep/agents-work-apps@0`.68.4

`@inkeep/ai-sdk-provider@0`.68.4

`@inkeep/create-agents@0`.68.4

`@inkeep/agents-api@0`.68.4

`@inkeep/agents-cli@0`.68.4

`@inkeep/agents-manage-ui@0`.68.4

`@inkeep/agents-sdk@0`.68.4

`@inkeep/agents-work-apps@0`.68.4

`@inkeep/ai-sdk-provider@0`.68.4

`@inkeep/create-agents@0`.68.4

`@inkeep/agents-api@0`.68.4