chore(deps)(deps): Bump the npm-minor-patch group across 1 directory with 8 updates by dependabot[bot] · Pull Request #53 · kevinggraphiste-hub/Gungnir

dependabot · 2026-06-01T09:05:56Z

Bumps the npm-minor-patch group with 8 updates in the /frontend directory:

Package	From	To
@icons-pack/react-simple-icons	`13.11.1`	`13.13.0`
@uiw/react-codemirror	`4.25.9`	`4.25.10`
cytoscape	`3.33.3`	`3.33.4`
js-yaml	`4.1.1`	`4.2.0`
react-router-dom	`7.14.0`	`7.16.0`
zustand	`5.0.12`	`5.0.14`
autoprefixer	`10.4.27`	`10.5.0`
vite	`8.0.13`	`8.0.16`

Updates @icons-pack/react-simple-icons from 13.11.1 to 13.13.0

Commits

See full diff in compare view

Updates @uiw/react-codemirror from 4.25.9 to 4.25.10

Release notes

Sourced from @uiw/react-codemirror's releases.

v4.25.10

Documentation v4.25.10: https://raw.githack.com/uiwjs/react-codemirror/5e24acf/index.html
Comparing Changes: uiwjs/react-codemirror@v4.25.9...v4.25.10
npm i @uiw/react-codemirror@4.25.10

Commits

d54c130 released v4.25.10
229eb4f chore: add sponsor SubList.
d10a51f doc: update README.md
30a535e doc: Update READMEs
See full diff in compare view

Updates cytoscape from 3.33.3 to 3.33.4

Release notes

Sourced from cytoscape's releases.

v3.33.4

Release version v3.33.4

Commits

57f6f8f 3.33.4
9866276 Build 3.33.4
8bccd8d Docs: Add 3.33.4 to versions.json
3dc93ab Cherry-pick to master: Merge pull request #3462 from linz/3461-update-gpu-dem...
f51f28e Merge pull request #3458 from chrchrd/fix/add-straight-triangle-to-curve-styl...
c1e45e4 add straight-triangle to curve-style type
eef0cee Cherry-pick to master: Merge pull request #3456 from cytoscape/feature/upgrad...
See full diff in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for cytoscape since your current version.

Updates js-yaml from 4.1.1 to 4.2.0

Changelog

Sourced from js-yaml's changelog.

[4.2.0] - 2026-06-01

Added

Added docs/safety.md with notes about processing untrusted YAML.

Added maxDepth (100) loader option. Not a problem, but gives a better exception instead of RangeError on stack overflow.

Added maxMergeSeqLength (20) loader option. Not a problem after merge fix, but an additional restriction for safety.

Added sourcemaps to dist/ builds.

Changed

Stop resolving numbers with underscores as numeric scalars, #627.

Switched dev toolchains to Vite / neostandard.

Updated demo.

Reorganized tests.

dist/ files are no longer kept in the repository.

Fixed

Fix parsing of properties on the first implicit block mapping key, #62.

Fix trailing whitespace handling when folding flow scalar lines, #307.

Reject top-level block scalars without content indentation, #280.

Ensure numbers survive round-trip, #737.

Fix test coverage for issue #221.

Fix flow scalar trailing whitespace folding, #307.

Fix digits in YAML named tag handles.

Security

Fix potential DoS via quadratic complexity in merge - deduplicate repeated elements (makes sense for malformed files > 10K).

[3.14.2] - 2025-11-15

Security

Backported v4.1.1 fix to v3

Commits

See full diff in compare view

Updates react-router-dom from 7.14.0 to 7.16.0

Changelog

Sourced from react-router-dom's changelog.

v7.16.0

Patch Changes

Remove stale/invalid unpkg field from package.json. This was removed from other packages with the release of v7 but missed in the react-router-dom re-export package (#15075)

Updated dependencies:

react-router@7.16.0

v7.15.1

Patch Changes

Updated dependencies:

react-router@7.15.1

v7.15.0

Patch Changes

Updated dependencies:

react-router@7.15.0

v7.14.2

Patch Changes

Updated dependencies:

react-router@7.14.2

v7.14.1

Patch Changes

Updated dependencies:

react-router@7.14.1

Commits

8984d23 Release v7.16.0 (#15105)
3ed77af chore: format
e96962b fix: remove stale unpkg field from react-router-dom (#15075)
587d08f Release v7.15.1 (#15038)
97c8de7 Release v7.15.0 (#15018)
cf1d250 Release v7.14.2 (#14993)
197674b Release 7.14.1 (#14973)
a87774f Add new release process (#14916)
See full diff in compare view

Updates zustand from 5.0.12 to 5.0.14

Release notes

Sourced from zustand's releases.

v5.0.14

This release fixes a type issue in devtools.

What's Changed

fix(devtools): improve type inference for Devtools initializer by @dbritto-dev in pmndrs/zustand#3511

New Contributors

@TheSeydiCharyyev made their first contribution in pmndrs/zustand#3487

@brofrong made their first contribution in pmndrs/zustand#3496

@hyun907 made their first contribution in pmndrs/zustand#3506

Full Changelog: pmndrs/zustand@v5.0.13...v5.0.14

v5.0.13

This release includes an improvement in the devtools middleware.

What's Changed

refactor(devtools): remove duplicate module augmentation by @mahmoodhamdi in pmndrs/zustand#3443

fix(devtools): support Firefox/Safari stack format in findCallerName by @SBolsec in pmndrs/zustand#3469

New Contributors

@mahmoodhamdi made their first contribution in pmndrs/zustand#3443

@FelixEckl-vireq made their first contribution in pmndrs/zustand#3466

@KimHyeongRae0 made their first contribution in pmndrs/zustand#3471

@lstak made their first contribution in pmndrs/zustand#3483

@AlexRixten made their first contribution in pmndrs/zustand#3474

@SBolsec made their first contribution in pmndrs/zustand#3469

Full Changelog: pmndrs/zustand@v5.0.12...v5.0.13

Commits

bfb2a9e 5.0.14
62b2aff chore(deps): update dev dependencies (#3513)
ad77bd3 fix(devtools): improve type inference for Devtools initializer (#3511)
8476d2c update pnpm etc (#3512)
d690ec2 docs(combine): add object constraints to T and U in signature (#3506)
fd8c601 docs(react): add Action constraint to redux middleware signature (#3492)
2ce8226 docs(immer): fix setPerson updater type in usage examples (#3502)
038b938 docs(updating-state): use curried create form with explicit state type (#3503)
60a91b4 docs(devtools): add missing devtools import to troubleshooting example (#3501)
efad169 Update FUNDING.json
Additional commits viewable in compare view

Updates autoprefixer from 10.4.27 to 10.5.0

Release notes

Sourced from autoprefixer's releases.

10.5.0 “Each Endeavouring, All Achieving”

Added mask-position-x and mask-position-y support (by @toporek).

Changelog

Sourced from autoprefixer's changelog.

10.5.0 “Each Endeavouring, All Achieving”

Added mask-position-x and mask-position-y support (by @toporek).

Commits

faf456a Release 10.5 version
b841fc5 Update dependencies
47d6e68 Update email
45cfc08 Replace ESLint and Prettier to oxlint and oxfmt
7e3ec7d Add prefixing support for mask-position-x and mask-position-y (#1548)
See full diff in compare view

Updates vite from 8.0.13 to 8.0.16

Release notes

Sourced from vite's releases.

v8.0.16

Please refer to CHANGELOG.md for details.

v8.0.15

Please refer to CHANGELOG.md for details.

v8.0.14

Please refer to CHANGELOG.md for details.

Changelog

Sourced from vite's changelog.

8.0.16 (2026-06-01)

Bug Fixes

deps: reject UNC paths for launch-editor-middleware (#22571) (50b9512)

reject windows alternate paths (#22572) (dc245c7)

8.0.15 (2026-06-01)

Features

send 408 on request timeout (#22476) (c85c9ee)

update rolldown to 1.0.3 (#22538) (646dbed)

Bug Fixes

capitalize error messages and remove spurious space in parse error (#22488) (85a0eff)

deps: update all non-major dependencies (#22511) (2686d7d)

dev: fix html-proxy cache key mismatch for /@fs/ HTML paths (#21762) (47c4213)

glob: error on relative glob in virtual module when no files match (#22497) (5c8e98f)

optimizer: close the rolldown bundle when write() rejects (#22528) (e3cfb9d)

resolve: provide onWarn for viteResolvePlugin in JS plugin containers (#22509) (40985f1)

Miscellaneous Chores

deps: update rolldown-related dependencies (#22566) (3052a67)

Code Refactoring

correct logic in collectAllModules function (#22562) (6978a9c)

8.0.14 (2026-05-21)

Features

update rolldown to 1.0.2 (#22484) (96efc88)

Bug Fixes

deps: update all non-major dependencies (#22471) (98b8163)

dev: handle errors when sending messages to vite server (#22450) (e8e9a34)

html: handle trailing slash paths in transformIndexHtml (#22480) (5d94d1b)

optimizer: pass oxc jsx options to transformSync in dependency scan (#22342) (b3132da)

Miscellaneous Chores

deps: update rolldown-related dependencies (#22470) (7cb728e)

remove irrelevant commits from changelog (2c69495)

Code Refactoring

glob: do not rewrite import path for absolute base (#22310) (0ae2844)

... (truncated)

Commits

f94df87 release: v8.0.16
dc245c7 fix: reject windows alternate paths (#22572)
50b9512 fix(deps): reject UNC paths for launch-editor-middleware (#22571)
8d1b019 release: v8.0.15
2686d7d fix(deps): update all non-major dependencies (#22511)
3052a67 chore(deps): update rolldown-related dependencies (#22566)
e3cfb9d fix(optimizer): close the rolldown bundle when write() rejects (#22528)
6978a9c refactor: correct logic in collectAllModules function (#22562)
646dbed feat: update rolldown to 1.0.3 (#22538)
85a0eff fix: capitalize error messages and remove spurious space in parse error (#22488)
Additional commits viewable in compare view

dependabot · 2026-06-01T09:05:57Z

Labels

The following labels could not be found: dependencies, frontend. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

…with 8 updates Bumps the npm-minor-patch group with 8 updates in the /frontend directory: | Package | From | To | | --- | --- | --- | | [@icons-pack/react-simple-icons](https://github.com/icons-pack/react-simple-icons/tree/HEAD/react-simple-icons) | `13.11.1` | `13.13.0` | | [@uiw/react-codemirror](https://github.com/uiwjs/react-codemirror) | `4.25.9` | `4.25.10` | | [cytoscape](https://github.com/cytoscape/cytoscape.js) | `3.33.3` | `3.33.4` | | [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.1` | `4.2.0` | | [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom) | `7.14.0` | `7.16.0` | | [zustand](https://github.com/pmndrs/zustand) | `5.0.12` | `5.0.14` | | [autoprefixer](https://github.com/postcss/autoprefixer) | `10.4.27` | `10.5.0` | | [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `8.0.13` | `8.0.16` | Updates `@icons-pack/react-simple-icons` from 13.11.1 to 13.13.0 - [Release notes](https://github.com/icons-pack/react-simple-icons/releases) - [Commits](https://github.com/icons-pack/react-simple-icons/commits/v13.13.0/react-simple-icons) Updates `@uiw/react-codemirror` from 4.25.9 to 4.25.10 - [Release notes](https://github.com/uiwjs/react-codemirror/releases) - [Commits](uiwjs/react-codemirror@v4.25.9...v4.25.10) Updates `cytoscape` from 3.33.3 to 3.33.4 - [Release notes](https://github.com/cytoscape/cytoscape.js/releases) - [Commits](cytoscape/cytoscape.js@v3.33.3...v3.33.4) Updates `js-yaml` from 4.1.1 to 4.2.0 - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](https://github.com/nodeca/js-yaml/commits) Updates `react-router-dom` from 7.14.0 to 7.16.0 - [Release notes](https://github.com/remix-run/react-router/releases) - [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md) - [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@7.16.0/packages/react-router-dom) Updates `zustand` from 5.0.12 to 5.0.14 - [Release notes](https://github.com/pmndrs/zustand/releases) - [Commits](pmndrs/zustand@v5.0.12...v5.0.14) Updates `autoprefixer` from 10.4.27 to 10.5.0 - [Release notes](https://github.com/postcss/autoprefixer/releases) - [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md) - [Commits](postcss/autoprefixer@10.4.27...10.5.0) Updates `vite` from 8.0.13 to 8.0.16 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v8.0.16/packages/vite) --- updated-dependencies: - dependency-name: "@icons-pack/react-simple-icons" dependency-version: 13.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-minor-patch - dependency-name: "@uiw/react-codemirror" dependency-version: 4.25.10 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-minor-patch - dependency-name: autoprefixer dependency-version: 10.5.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-minor-patch - dependency-name: cytoscape dependency-version: 3.33.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-minor-patch - dependency-name: js-yaml dependency-version: 4.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-minor-patch - dependency-name: react-router-dom dependency-version: 7.16.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-minor-patch - dependency-name: vite dependency-version: 8.0.15 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-minor-patch - dependency-name: zustand dependency-version: 5.0.14 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-minor-patch ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2026-06-01T22:41:50Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot Bot requested a review from kevinggraphiste-hub as a code owner June 1, 2026 09:05

dependabot Bot force-pushed the dependabot/npm_and_yarn/frontend/npm-minor-patch-8e7cbfc1ea branch from 7ece347 to 96aa68c Compare June 1, 2026 10:03

dependabot Bot force-pushed the dependabot/npm_and_yarn/frontend/npm-minor-patch-8e7cbfc1ea branch from 96aa68c to 6e27ef5 Compare June 1, 2026 11:40

dependabot Bot closed this Jun 1, 2026

dependabot Bot deleted the dependabot/npm_and_yarn/frontend/npm-minor-patch-8e7cbfc1ea branch June 1, 2026 22:41

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps)(deps): Bump the npm-minor-patch group across 1 directory with 8 updates#53

chore(deps)(deps): Bump the npm-minor-patch group across 1 directory with 8 updates#53
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/frontend/npm-minor-patch-8e7cbfc1ea

dependabot Bot commented on behalf of github Jun 1, 2026 •

edited

Loading

Uh oh!

dependabot Bot commented on behalf of github Jun 1, 2026

Uh oh!

dependabot Bot commented on behalf of github Jun 1, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Jun 1, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v4.25.10

v3.33.4

[4.2.0] - 2026-06-01

Added

Changed

Fixed

Security

[3.14.2] - 2025-11-15

Security

v7.16.0

Patch Changes

v7.15.1

Patch Changes

v7.15.0

Patch Changes

v7.14.2

Patch Changes

v7.14.1

Patch Changes

v5.0.14

What's Changed

New Contributors

v5.0.13

What's Changed

New Contributors

10.5.0 “Each Endeavouring, All Achieving”

10.5.0 “Each Endeavouring, All Achieving”

v8.0.16

v8.0.15

v8.0.14

8.0.16 (2026-06-01)

Bug Fixes

8.0.15 (2026-06-01)

Features

Bug Fixes

Miscellaneous Chores

Code Refactoring

8.0.14 (2026-05-21)

Features

Bug Fixes

Miscellaneous Chores

Code Refactoring

Uh oh!

dependabot Bot commented on behalf of github Jun 1, 2026

Labels

Uh oh!

dependabot Bot commented on behalf of github Jun 1, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github Jun 1, 2026 •

edited

Loading