Draft
Conversation
0fcf592 to
50e3060
Compare
50e3060 to
4fee17c
Compare
4fee17c to
fa4f507
Compare
7b31cf7 to
1d3b175
Compare
86b51ac to
bc3265d
Compare
bc3265d to
d598015
Compare
d598015 to
0687abb
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
12.2.1→12.2.27.56.0→7.58.510.47.0→10.49.08.58.0→8.58.217.4.0→17.4.211.1.1→11.1.36.3.0→6.4.11.7.0→1.9.05.22.0→5.23.01.364.7→1.369.33.8.1→3.8.317.6.0→17.8.09.0.4→9.0.5Warning
Some dependencies could not be looked up. Check the Dependency Dashboard for more information.
Release Notes
formatjs/formatjs (@formatjs/intl-segmenter)
v12.2.2Compare Source
microsoft/rushstack (@microsoft/api-extractor)
v7.58.5Compare Source
Sat, 18 Apr 2026 03:47:10 GMT
Version update only
v7.58.4Compare Source
Sat, 18 Apr 2026 00:15:16 GMT
Patches
v7.58.3Compare Source
Fri, 17 Apr 2026 15:14:57 GMT
Patches
lodash.v7.58.2Compare Source
Thu, 09 Apr 2026 00:15:07 GMT
Version update only
v7.58.1Compare Source
Sat, 04 Apr 2026 00:14:00 GMT
Patches
v7.58.0Compare Source
Wed, 01 Apr 2026 15:13:38 GMT
Minor changes
v7.57.8Compare Source
Tue, 31 Mar 2026 15:14:14 GMT
Version update only
v7.57.7Compare Source
Mon, 09 Mar 2026 15:14:07 GMT
Patches
minimatchversion from10.2.1to10.2.3to address CVE-2026-27903.v7.57.6Compare Source
Wed, 25 Feb 2026 21:39:42 GMT
Patches
@microsoft/tsdoc-configto~0.18.1to mitigate CVE-2025-69873.v7.57.5Compare Source
Wed, 25 Feb 2026 00:34:29 GMT
Version update only
v7.57.4Compare Source
Tue, 24 Feb 2026 01:13:27 GMT
Version update only
v7.57.3Compare Source
Mon, 23 Feb 2026 00:42:21 GMT
Patches
v7.57.2Compare Source
Fri, 20 Feb 2026 16:14:49 GMT
Patches
v7.57.1Compare Source
Fri, 20 Feb 2026 00:15:03 GMT
Patches
"node"condition before"import"in the"exports"map so that Node.js uses the CJS output (which handles extensionless imports), while bundlers still use ESM via"import". Fixes #5644.v7.57.0Compare Source
Thu, 19 Feb 2026 00:04:52 GMT
Minor changes
lib-commonjs, DTS is now underlib-dts, and ESM is now underlib-esm. Imports tolibstill work as before, handled by the"exports"field inpackage.json.v7.56.3Compare Source
Sat, 07 Feb 2026 01:13:26 GMT
Patches
lodashdependency from~4.17.15to~4.17.23.v7.56.2Compare Source
Wed, 04 Feb 2026 20:42:47 GMT
Patches
v7.56.1Compare Source
Wed, 04 Feb 2026 16:13:27 GMT
Version update only
getsentry/sentry-javascript (@sentry/browser)
v10.49.0Compare Source
Important Changes
feat(browser): Add View Hierarchy integration (#14981)
A new
viewHierarchyIntegrationcaptures the DOM structure when an error occurs, providing a snapshot of the page state for debugging. Enable it in your Sentry configuration:feat(cloudflare): Split alarms into multiple traces and link them (#19373)
Durable Object alarms now create separate traces for each alarm invocation, with proper linking between related alarms for better observability.
feat(cloudflare): Enable RPC trace propagation with
enableRpcTracePropagation(#19991, #20345)A new
enableRpcTracePropagationoption enables automatic trace propagation for Cloudflare RPC calls via.fetch(), ensuring distributed traces flow correctly across service bindings.feat(core): Add
enableTruncationoption to AI integrations (#20167, #20181, #20182, #20183, #20184)All AI integrations (OpenAI, Anthropic, Google GenAI, LangChain, LangGraph) now support an
enableTruncationoption to control whether large AI inputs/outputs are truncated.feat(opentelemetry): Vendor
AsyncLocalStorageContextManager(#20243)The OpenTelemetry context manager is now vendored internally, reducing external dependencies and ensuring consistent behavior across environments.
Other Changes
rewriteSourcestop level option (#20142)eventLoopBlockIntegration(#20108)conversation_idonly ongen_aispans (#20274)ai.operationIdfor Vercel AI V6 operation name mapping (#20285)reader.closedrejection fromreleaseLock()in streaming (#20187)Internal Changes
findInjectionIndexAfterDirectivesfor better readability (#20310)@opentelemetry/resourceswith inlinegetSentryResource()(#20327)Bundle size 📦
v10.48.0Compare Source
typescript-eslint/typescript-eslint (@typescript-eslint/parser)
v8.58.2Compare Source
🩹 Fixes
❤️ Thank You
See GitHub Releases for more information.
You can read about our versioning strategy and releases on our website.
v8.58.1Compare Source
This was a version bump only for parser to align it with other projects, there were no code changes.
See GitHub Releases for more information.
You can read about our versioning strategy and releases on our website.
motdotla/dotenv (dotenv)
v17.4.2Compare Source
v17.4.1Compare Source
kjur/jsrsasign (jsrsasign)
v11.1.3: Security FixCompare Source
reported in issue #656 by @e3stpavel
v11.1.2: Security FixCompare Source
reported by Bronson Yen of Calif.io and @Kr0emer #655.
getChildIdx fix to avoid infinite loop reported by Koda Reef.
FIPS 186-4 section 4.7 wrong boundary checking in verifyWithMessageHash
reported by Koda Reef, Nicholas Carlini and @Kr0emer.
getChildIdx may raise DoS because of lacking value length check
reported by Yt(yutengsun) and Franciny S Roj.
as reported by Franciny S Roj.
Thank you indeed for those vulnerability reports and/or patches.
webpro-nl/knip (knip)
v6.4.1: Release 6.4.1Compare Source
2d3d8d8)cdbe298)v6.4.0: Release 6.4.0Compare Source
ed97e6a) - thanks @Zamiell!bcad120) - thanks @Zamiell!7ab0d4d) - thanks @Faithfinder!1431ff3) - thanks @TkDodo!e78c7f6) - thanks @vincent067!@jest-environmentpragma resolution and limit pragma scope (3832364)a47aff5)cefed38)25a7982)b63fbd9)573df54)--cacheruns (6ab8de8)dabf8ce)0506895)f3ed14d)00ae83b)35d8fab)40a917e)608f0ed)v6.3.1: Release 6.3.1Compare Source
0a6e93d) - thanks @controversial!97bb283) - thanks @mpalmer685!c4d6b28)33ef87d)mpspahr/mailpit-api (mailpit-api)
v1.9.0Compare Source
What's Changed
Improvements
MailpitClientconstructor that accepts Axios configuration optionsCreateAxiosDefaultsminusbaseURL,auth, andvalidateStatus.Maintenance
Full Changelog: mpspahr/mailpit-api@v1.8.2...v1.9.0
v1.8.2Compare Source
What's Changed
Maintenance
Full Changelog: mpspahr/mailpit-api@v1.8.1...v1.8.2
v1.8.1Compare Source
What's Changed
mainfields inpackage.jsonby @Ogoruwa in #109New Contributors
Full Changelog: mpspahr/mailpit-api@v1.8.0...v1.8.1
v1.8.0Compare Source
What's Changed
Improvements
waitForMessageandwaitForMessages, to wait for specific message(s) and/or message count.Fixes
setReadStatuswith no parametersMaintenance
Full Changelog: mpspahr/mailpit-api@v1.7.2...v1.8.0
v1.7.2Compare Source
What's Changed
Fixes
Maintenance
Full Changelog: mpspahr/mailpit-api@v1.7.1...v1.7.2
v1.7.1Compare Source
What's Changed
Improvements
Updated MailpitSpamAssassinResponse to account for spamAssassinCheck() returning an error resulting in Rules set to null
Maintenance
Updated dependencies
Full Changelog: mpspahr/mailpit-api@v.1.7.0...v1.7.1
maplibre/maplibre-gl-js (maplibre-gl)
v5.23.0Compare Source
✨ Features and improvements
touchZoomRotate.setZoomRate()andtouchZoomRotate.setZoomThreshold()to customize touch zoom speed and pinch sensitivity (#7271)makeRequestin workres as well (#7451) (by @HarelM)opacityandopacityWhenCoveredinMarkerandMarkerOptionsto acceptnumberin addition tostring, and addmaplibregl-marker-coveredCSS class toMarkerelement when covered by 3D terrain or a globe (#7433) (by @YuChunTsao)_demMatrixCachelookup being wasted cycles by actually using the cache (#7400) (by @CommanderStorm)🐞 Bug fixes
_contextRestoredwhen map was initialized without a style (#7432) (by @mvanhorn)PostHog/posthog-js (posthog-js)
v1.369.3Compare Source
1.369.3
Patch Changes
#3419
ea08727Thanks @haacked! - Reinstate$feature_flag_payloadsand$surveys_activatedin captured event properties.(2026-04-18)
#3416
3d8b2e2Thanks @feliperalmeida! - Updated dependencies: - protobufjs@7.5.5(2026-04-18)
Updated dependencies []:
v1.369.2Compare Source
1.369.2
Patch Changes
4a65604Thanks @dustinbyrne! - Add a preview flag for versioned browser lazy bundle asset paths.(2026-04-16)
4a65604]:v1.369.1Compare Source
1.369.1
Patch Changes
#3393
85ae4d9Thanks @haacked! - Exclude active feature flag payloads from event properties(2026-04-16)
#3392
00cd1ceThanks @haacked! - Fix unnecessary persisted config and activation properties (including product tours, surveys, and session recording config) added to captured events(2026-04-16)
Updated dependencies []:
v1.369.0Compare Source
1.369.0
Minor Changes
#3342
eea5260Thanks @ksvat! - Account for property filters on events in recording triggers for v2 triggers(2026-04-14)
#3281
b1fd228Thanks @ksvat! - Add session replay trigger groups handling (V2)(2026-04-14)
Patch Changes
v1.368.2Compare Source
1.368.2
Patch Changes
f1bea33Thanks @marandaneto! - Disable native gzip compression after a NotReadableError in the browser SDK(2026-04-14)
v1.368.1Compare Source
1.368.1
Patch Changes
d7c71b1Thanks @dmarticus! - Fix bootstrapped feature flags being overwritten by partial /flags response whenadvanced_only_evaluate_survey_feature_flagsis enabled(2026-04-14)
v1.368.0Compare Source
1.368.0
Minor Changes
3fcf5c4Thanks @jonmcwest! - Add posthog.captureLog() API for sending structured log entries to PostHog logs(2026-04-13)
Patch Changes
f5fe0a8Thanks @ksvat! - bump rrweb version(2026-04-13)
3fcf5c4]:v1.367.0Compare Source
1.367.0
Minor Changes
353be9aThanks @dustinbyrne! - feat: Add support for pre-loaded remote-config(2026-04-09)
Patch Changes
v1.366.2Configuration
📅 Schedule: (UTC)
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.