Skip to content

build(deps): bump the minor-and-patch group across 1 directory with 4 updates#72

Closed
dependabot[bot] wants to merge 1 commit into
claude/blackmass-corporate-website-caGTRfrom
dependabot/npm_and_yarn/minor-and-patch-74ea048a21
Closed

build(deps): bump the minor-and-patch group across 1 directory with 4 updates#72
dependabot[bot] wants to merge 1 commit into
claude/blackmass-corporate-website-caGTRfrom
dependabot/npm_and_yarn/minor-and-patch-74ea048a21

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github May 12, 2026
edited
Loading

Bumps the minor-and-patch group with 4 updates in the / directory: @supabase/ssr, @supabase/supabase-js, tailwind-merge and postcss.

Updates @supabase/ssr from 0.10.2 to 0.10.3

Release notes

Sourced from @​supabase/ssr's releases.

v0.10.3

0.10.3 (2026-05-07)

Bug Fixes

  • allow cookies encode without getAll/setAll on browser client (#213) (89f3f28), closes #170
  • enable tree-shaking for browser bundles (#216) (f009d71)
  • tsconfig: set explicit rootDir to silence TS6059 in consumer IDEs (#211) (a77ee8a), closes #209
  • validate base64-prefixed chunked cookies decode to valid JSON (#210) (302cc0e)

v0.10.3-rc.101

What's Changed

Full Changelog: supabase/ssr@v0.10.3-rc.100...v0.10.3-rc.101

v0.10.3-rc.100

What's Changed

Full Changelog: supabase/ssr@v0.10.3-rc.98...v0.10.3-rc.100

v0.10.3-rc.98

What's Changed

Full Changelog: supabase/ssr@v0.10.3-rc.96...v0.10.3-rc.98

v0.10.3-rc.96

What's Changed

Full Changelog: supabase/ssr@v0.10.2...v0.10.3-rc.96

Changelog

Sourced from @​supabase/ssr's changelog.

0.10.3 (2026-05-07)

Bug Fixes

  • allow cookies encode without getAll/setAll on browser client (#213) (89f3f28), closes #170
  • enable tree-shaking for browser bundles (#216) (f009d71)
  • tsconfig: set explicit rootDir to silence TS6059 in consumer IDEs (#211) (a77ee8a), closes #209
  • validate base64-prefixed chunked cookies decode to valid JSON (#210) (302cc0e)
Commits
  • 9630b33 chore(main): release 0.10.3 (#212)
  • 89f3f28 fix: allow cookies encode without getAll/setAll on browser client (#213)
  • f009d71 fix: enable tree-shaking for browser bundles (#216)
  • 4fef7d9 chore: update @​supabase/supabase-js to v2.105.3 (#215)
  • 302cc0e fix: validate base64-prefixed chunked cookies decode to valid JSON (#210)
  • 8449015 chore: update @​supabase/supabase-js to v2.105.2 (#214)
  • a77ee8a fix(tsconfig): set explicit rootDir to silence TS6059 in consumer IDEs (#211)
  • 65453df chore: update @​supabase/supabase-js to v2.105.1 (#208)
  • 2ec3349 chore: update @​supabase/supabase-js to v2.105.0 (#206)
  • 0ca0031 chore: update @​supabase/supabase-js to v2.104.1 (#204)
  • Additional commits viewable in compare view

Updates @supabase/supabase-js from 2.103.2 to 2.106.0

Release notes

Sourced from @​supabase/supabase-js's releases.

v2.106.0

2.106.0 (2026-05-18)

🚀 Features

  • supabase: W3C/OpenTelemetry trace context propagation (#2163)

🩹 Fixes

  • auth: return null user and session for email_change single-confirmation verifyOtp (#2378)
  • release: mark @​supabase/tracing private and snapshot it for JSR (#2370)
  • storage: make StreamDownloadBuilder implement Promise and memoize executor (#2367)

❤️ Thank You

  • Claude Sonnet 4.5
  • Guilherme Souza
  • Katerina Skroumpelou @​mandarini
  • oniani1

v2.106.0-canary.4

2.106.0-canary.4 (2026-05-15)

This was a version bump only, there were no code changes.

v2.106.0-canary.3

2.106.0-canary.3 (2026-05-15)

This was a version bump only, there were no code changes.

v2.106.0-canary.2

2.106.0-canary.2 (2026-05-14)

This was a version bump only, there were no code changes.

v2.106.0-canary.1

2.106.0-canary.1 (2026-05-13)

🩹 Fixes

  • release: mark @​supabase/tracing private and snapshot it for JSR (#2370)

❤️ Thank You

v2.106.0-canary.0

2.106.0-canary.0 (2026-05-13)

🚀 Features

... (truncated)

Changelog

Sourced from @​supabase/supabase-js's changelog.

2.106.0 (2026-05-18)

🚀 Features

  • supabase: W3C/OpenTelemetry trace context propagation (#2163)

🩹 Fixes

  • release: mark @​supabase/tracing private and snapshot it for JSR (#2370)

❤️ Thank You

  • Claude Sonnet 4.5
  • Guilherme Souza
  • Katerina Skroumpelou @​mandarini

2.105.4 (2026-05-08)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.105.2 (2026-05-04)

🩹 Fixes

  • auth: forward lockAcquireTimeout to SupabaseAuthClient (#2309)
  • misc: widen enum-like unions with (string & {}) for forward compat (#2303)

❤️ Thank You

2.105.1 (2026-04-28)

This was a version bump only for @​supabase/supabase-js to align it with other projects, there were no code changes.

2.105.0 (2026-04-27)

🚀 Features

  • auth: add passkey support with WebAuthn registration, authentication, and management (#2283)
  • realtime: Realtime deferred disconnect (#2282)

2.104.1 (2026-04-23)

🩹 Fixes

  • supabase: propagate custom fetch to realtime client (#2267)

❤️ Thank You

... (truncated)

Commits

Updates tailwind-merge from 3.5.0 to 3.6.0

Release notes

Sourced from tailwind-merge's releases.

v3.6.0

New Features

Documentation

Other

Full Changelog: dcastil/tailwind-merge@v3.5.0...v3.6.0

Thanks to @​brandonmcconnell, @​manavm1990, @​langy, @​roboflow, @​syntaxfm, @​getsentry, @​codecov, a private sponsor, @​block, @​openclaw, @​sourcegraph, @​mike-healy and more via @​thnxdev for sponsoring tailwind-merge! ❤️

Commits
  • d54f7e5 v3.6.0
  • 638871a Update README to add info about Tailwind CSS v4.3 support
  • 39fc7b5 Revert "v3.6.0"
  • bd8390f v3.6.0
  • 802877c add v3.6.0 changelog
  • a35feda Merge pull request #665 from dcastil/renovate/rollup-plugin-babel-7.x
  • 940389c Merge pull request #667 from dcastil/renovate/release-drafter-release-drafter...
  • 005af6d pin to specific version
  • 5816ced implement breaking changes
  • 17041e1 Merge pull request #676 from dcastil/dependabot/npm_and_yarn/babel/plugin-tra...
  • Additional commits viewable in compare view

Updates postcss from 8.5.9 to 8.5.15

Release notes

Sourced from postcss's releases.

8.5.15

  • Fixed declaration parsing performance (by @​homanp).

8.5.14

8.5.13

  • Fixed postcss-scss commend regression.

8.5.12

  • Fixed reading any file via user-generated CSS.
  • Added opts.unsafeMap to disable checks.

8.5.11

  • Fixed nested brackets parsing performance (by @​offset).

8.5.10

  • Fixed XSS via unescaped </style> in non-bundler cases (by @​TharVid).
Changelog

Sourced from postcss's changelog.

8.5.15

  • Fixed declaration parsing performance (by @​homanp).

8.5.14

8.5.13

  • Fixed postcss-scss commend regression.

8.5.12

  • Fixed reading any file via user-generated CSS.
  • Added opts.unsafeMap to disable checks.

8.5.11

  • Fixed nested brackets parsing performance (by @​offset).

8.5.10

  • Fixed XSS via unescaped </style> in non-bundler cases (by @​TharVid).
Commits
  • eae46db Release 8.5.15 version
  • 79508ff Update CI actions
  • b128e21 Speed up declaration parsing by avoiding creating new array on each token
  • 9825dca Fix code format
  • 55789c8 Update dependencies
  • 84fbbe9 Install older pnpm action for old Node.js
  • 9f860bd Revert pnpm action for old Node.js
  • 0877198 Update CI actions
  • b2d1a33 Fix linter warnings
  • 0700dac Merge pull request #2088 from rootvector2/add-oss-fuzz-harness
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 12, 2026
@vercel
Copy link
Copy Markdown

vercel Bot commented May 12, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
blackmasswebsite Ready Ready Preview, Comment May 19, 2026 10:29pm

Request Review

@dependabot
build(deps): bump the minor-and-patch group across 1 directory with 4…
5b871a0 
… updates

Bumps the minor-and-patch group with 4 updates in the / directory: [@supabase/ssr](https://github.com/supabase/ssr), [@supabase/supabase-js](https://github.com/supabase/supabase-js/tree/HEAD/packages/core/supabase-js), [tailwind-merge](https://github.com/dcastil/tailwind-merge) and [postcss](https://github.com/postcss/postcss).


Updates `@supabase/ssr` from 0.10.2 to 0.10.3
- [Release notes](https://github.com/supabase/ssr/releases)
- [Changelog](https://github.com/supabase/ssr/blob/main/CHANGELOG.md)
- [Commits](supabase/ssr@v0.10.2...v0.10.3)

Updates `@supabase/supabase-js` from 2.103.2 to 2.106.0
- [Release notes](https://github.com/supabase/supabase-js/releases)
- [Changelog](https://github.com/supabase/supabase-js/blob/master/packages/core/supabase-js/CHANGELOG.md)
- [Commits](https://github.com/supabase/supabase-js/commits/v2.106.0/packages/core/supabase-js)

Updates `tailwind-merge` from 3.5.0 to 3.6.0
- [Release notes](https://github.com/dcastil/tailwind-merge/releases)
- [Commits](dcastil/tailwind-merge@v3.5.0...v3.6.0)

Updates `postcss` from 8.5.9 to 8.5.15
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@8.5.9...8.5.15)

---
updated-dependencies:
- dependency-name: "@supabase/ssr"
  dependency-version: 0.10.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: "@supabase/supabase-js"
  dependency-version: 2.105.4
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: postcss
  dependency-version: 8.5.14
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: tailwind-merge
  dependency-version: 3.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/minor-and-patch-74ea048a21 branch from 914e881 to 5b871a0 Compare May 19, 2026 22:29
@dependabot @github
Copy link
Copy Markdown
Author

dependabot Bot commented on behalf of github May 26, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this May 26, 2026
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/minor-and-patch-74ea048a21 branch May 26, 2026 18:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants