Skip to content

Bump the npm-dependencies group across 1 directory with 10 updates#1249

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/npm-dependencies-50a4584962
Open

Bump the npm-dependencies group across 1 directory with 10 updates#1249
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/npm-dependencies-50a4584962

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 17, 2026

Bumps the npm-dependencies group with 10 updates in the / directory:

Package From To
@hey-api/openapi-ts 0.94.5 0.96.0
@panzoom/panzoom 4.6.1 4.6.2
choices.js 11.2.1 11.2.2
exifreader 4.37.0 4.38.1
vue 3.5.31 3.5.32
@vitejs/plugin-vue 6.0.5 6.0.6
autoprefixer 10.4.27 10.5.0
postcss 8.5.8 8.5.10
prettier 3.8.1 3.8.3
sass 1.98.0 1.99.0

Updates @hey-api/openapi-ts from 0.94.5 to 0.96.0

Release notes

Sourced from @​hey-api/openapi-ts's releases.

@​hey-api/openapi-ts@​0.95.0

Minor Changes

Validator request schemas

Valibot plugin no longer exports composite request Data schemas. Instead, each layer is exported as a separate schema. If you're using validators with SDKs, you can preserve the composite schema with shouldExtract:

export default {
  input: "hey-api/backend", // sign up at app.heyapi.dev
  output: "src/client",
  plugins: [
    // ...other plugins
    {
      name: "sdk",
      validator: "valibot",
    },
    {
      name: "valibot",
      requests: {
        shouldExtract: true,
      },
    },
  ],
};

Removed plugin.getSymbol() function

This function has been removed. You can use plugin.querySymbol() instead. It accepts the same arguments and returns the same result.

Validator request schemas

Zod plugin no longer exports composite request Data schemas. Instead, each layer is exported as a separate schema. If you're using validators with SDKs, you can preserve the composite schema with shouldExtract:

export default {
  input: "hey-api/backend", // sign up at app.heyapi.dev
  output: "src/client",
  plugins: [
    // ...other plugins
    {
      name: "sdk",
      validator: "zod",
</tr></table>

... (truncated)

Changelog

Sourced from @​hey-api/openapi-ts's changelog.

@​hey-api/openapi-ts 0.96.0

⚠️ Breaking

This release has 1 breaking change. Please review the release notes carefully before upgrading.

Updates

  • ⚠️ Breaking: This release bumps the minimum required Node version to 22.13. (#3694)
  • cli: improve error message on invalid input (#3679)
  • parser: keep orphans when explicitly included in filters (#3714)
  • parser: process enum metadata (#3727)

Plugins

@​angular/common

  • requests and resources broken default configuration (#3678)

@​hey-api/client-angular

  • simplify SSE line endings normalization (#3686)

@​hey-api/client-axios

  • simplify SSE line endings normalization (#3686)

@​hey-api/client-fetch

  • simplify SSE line endings normalization (#3686)

@​hey-api/client-ky

  • simplify SSE line endings normalization (#3686)

@​hey-api/client-next

  • simplify SSE line endings normalization (#3686)

@​hey-api/client-nuxt

  • simplify SSE line endings normalization (#3686)

@​hey-api/client-ofetch

  • simplify SSE line endings normalization (#3686)

@​hey-api/transformers

  • return value for primitive array entries (#3733)

... (truncated)

Commits

Updates @panzoom/panzoom from 4.6.1 to 4.6.2

Release notes

Sourced from @​panzoom/panzoom's releases.

Release 4.6.2

4.6.2 (2026-04-02)

Commits
  • 1284fbc chore: release 4.6.2
  • cb243f4 chore(deps): upgrade dependencies, including typescript@6 (#699)
  • 4a16877 ci(deps): bump actions/cache from 5.0.3 to 5.0.4 in the github-actions group ...
  • 46c06d4 chore(deps): bump the github-actions group with 3 updates (#696)
  • b36c82f chore(deps): upgrade dependencies (#695)
  • 8a0fbef chore(release): remove dist after release
  • See full diff in compare view

Updates choices.js from 11.2.1 to 11.2.2

Release notes

Sourced from choices.js's releases.

v11.2.2

Changes

🐛 Bug Fixes

  • Fix maxItemText would cause the dropdown to display if choices.js is created with that many items selected (Fix #1299) @​Xon (#1393)
  • Fix non-fixed width font support when computing width for input element @​terminalchai (#1384)
  • Fix setChoices() could cause the add choice notice to incorrectly render and replaceChoices/clearSearchFlag/replaceItems arguments could be ignored @​Xon (#1389)
  • Fix opening the dropdown could cause the entire page to scroll @​Xon (#1388)

🔧 Maintenance

Contributors

@​Xon, @​dependabot, @​dependabot[bot] and @​terminalchai

Commits
  • a8d538c Build assets
  • 33ac5e0 version bump
  • 8681bd9 Merge pull request #1395 from Choices-js/dependabot/npm_and_yarn/vite-7.3.2
  • 76afab4 Bump vite from 7.3.1 to 7.3.2
  • 90842fb Merge pull request #1394 from Choices-js/dependabot/npm_and_yarn/serialize-ja...
  • eef73d5 Bump serialize-javascript from 7.0.4 to 7.0.5
  • a6dceee Build assets
  • a40c0ee Merge pull request #1393 from Choices-js/fix-maxItemText-select-multiple
  • 8d6605a Adjust text e2e suit to better handle dropdown behavior
  • ef2415c Fix maxItemText would cause the dropdown to display if choices.js is created ...
  • Additional commits viewable in compare view

Updates exifreader from 4.37.0 to 4.38.1

Release notes

Sourced from exifreader's releases.

4.38.1: Bump @​xmldom/xmldom range

What's Changed

New Contributors

Full Changelog: mattiasw/ExifReader@v4.38.0...v4.38.1

4.38.0: JPEG XL support

No release notes provided.

4.37.1: Handle truncated EXIF segment

No release notes provided.

Changelog

Sourced from exifreader's changelog.

[4.38.1] - 2026-04-09

Changed

  • Bump @​xmldom/xmldom range to ^0.9.9.

[4.38.0] - 2026-04-07

Added

  • Support for JPEG XL images (Exif, XMP, MakerNote, image details).
  • decompress option for providing custom Brotli/deflate decompression functions (needed for JPEG XL in environments without native support).

[4.37.1] - 2026-04-05

Fixed

  • Handle truncated EXIF segment without crashing.
Commits
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for exifreader since your current version.


Updates vue from 3.5.31 to 3.5.32

Release notes

Sourced from vue's releases.

v3.5.32

For stable releases, please refer to CHANGELOG.md for details. For pre-releases, please refer to CHANGELOG.md of the minor branch.

Changelog

Sourced from vue's changelog.

3.5.32 (2026-04-03)

Bug Fixes

Reverts

Commits
  • 9a2eb53 release: v3.5.32
  • 32b44f1 fix(teleport): handle updates before deferred mount (#14642)
  • f166353 fix(runtime-core): prevent currentInstance leak into sibling render during as...
  • 302c47a fix(types): use private branding for shallowReactive (#14641)
  • e20ddb0 fix(types): allow customRef to have different getter/setter types (#14639)
  • 219d83b Revert "fix(server-renderer): cleanup component effect scopes after SSR rende...
  • fa23116 chore: fix typos in changelogs (#14653)
  • See full diff in compare view

Updates @vitejs/plugin-vue from 6.0.5 to 6.0.6

Release notes

Sourced from @​vitejs/plugin-vue's releases.

plugin-vue@6.0.6

Please refer to CHANGELOG.md for details.

Changelog

Sourced from @​vitejs/plugin-vue's changelog.

6.0.6 (2026-04-13)

Features

  • plugin-vue: propagate multiRoot for template-only vapor components (#745) (9e07ae9)

Bug Fixes

  • deps: update all non-major dependencies (#738) (050c996)

Miscellaneous Chores

Commits
  • 51dbf4b release: plugin-vue@6.0.6
  • 9e07ae9 feat(plugin-vue): propagate multiRoot for template-only vapor components (#745)
  • 050c996 fix(deps): update all non-major dependencies (#738)
  • 6d834d8 chore: remove unused deps (#760)
  • a0e1ef8 chore(deps): update dependency rollup to ^4.59.0 (#749)
  • See full diff in compare view

Updates autoprefixer from 10.4.27 to 10.5.0

Release notes

Sourced from autoprefixer's releases.

10.5.0 “Each Endeavouring, All Achieving”

  • Added mask-position-x and mask-position-y support (by @​toporek).
Changelog

Sourced from autoprefixer's changelog.

10.5.0 “Each Endeavouring, All Achieving”

  • Added mask-position-x and mask-position-y support (by @​toporek).
Commits

Updates postcss from 8.5.8 to 8.5.10

Release notes

Sourced from postcss's releases.

8.5.10

  • Fixed XSS via unescaped </style> in non-bundler cases (by @​TharVid).

8.5.9

  • Speed up source map encoding paring in case of the error.
Changelog

Sourced from postcss's changelog.

8.5.10

  • Fixed XSS via unescaped </style> in non-bundler cases (by @​TharVid).

8.5.9

  • Speed up source map encoding paring in case of the error.
Commits

Updates prettier from 3.8.1 to 3.8.3

Release notes

Sourced from prettier's releases.

3.8.3

🔗 Changelog

3.8.2

  • Support Angular v21.2

🔗 Changelog

Changelog

Sourced from prettier's changelog.

3.8.3

diff

SCSS: Prevent trailing comma in if() function (#18471 by @​kovsu)

// Input
$value: if(sass(false): 1; else: -1);
// Prettier 3.8.2
$value: if(
sass(false): 1; else: -1,
);
// Prettier 3.8.3
$value: if(sass(false): 1; else: -1);

3.8.2

diff

Angular: Support Angular v21.2 (#18722, #19034 by @​fisker)

Exhaustive typechecking with @default never;

<!-- Input -->
@switch (foo) {
  @case (1) {}
  @default never;
}
<!-- Prettier 3.8.1 -->
SyntaxError: Incomplete block "default never". If you meant to write the @ character, you should use the "&#64;" HTML entity instead. (3:3)
<!-- Prettier 3.8.2 -->
@​switch (foo) {
@​case (1) {}
@​default never;
}

arrow function and instanceof expressions.

</tr></table>

... (truncated)

Commits

Updates sass from 1.98.0 to 1.99.0

Release notes

Sourced from sass's releases.

Dart Sass 1.99.0

To install Sass 1.99.0, download one of the packages below and add it to your PATH, or see the Sass website for full installation instructions.

Changes

  • Add support for parent selectors (&) at the root of the document. These are emitted as-is in the CSS output, where they're interpreted as the scoping root.

  • User-defined functions named calc or clamp are no longer forbidden. If such a function exists without a namespace in the current module, it will be used instead of the built-in calc() or clamp() function.

  • User-defined functions whose names begin with - and end with -expression, -url, -and, -or, or -not are no longer forbidden. These were originally intended to match vendor prefixes, but in practice no vendor prefixes for these functions ever existed in real browsers.

  • User-defined functions named EXPRESSION, URL, and ELEMENT, those that begin with - and end with -ELEMENT, as well as the same names with some lowercase letters are now deprecated, These are names conflict with plain CSS functions that have special syntax.

    See the Sass website for details.

  • In a future release, calls to functions whose names begin with - and end with -expression and -url will no longer have special parsing. For now, these calls are deprecated if their behavior will change in the future.

    See the Sass website for details.

  • Calls to functions whose names begin with - and end with -progid:... are deprecated.

    See the Sass website for details.

See the full changelog for changes in earlier releases.

Changelog

Sourced from sass's changelog.

1.99.0

  • Add support for parent selectors (&) at the root of the document. These are emitted as-is in the CSS output, where they're interpreted as the scoping root.

  • User-defined functions named calc or clamp are no longer forbidden. If such a function exists without a namespace in the current module, it will be used instead of the built-in calc() or clamp() function.

  • User-defined functions whose names begin with - and end with -expression, -url, -and, -or, or -not are no longer forbidden. These were originally intended to match vendor prefixes, but in practice no vendor prefixes for these functions ever existed in real browsers.

  • User-defined functions named EXPRESSION, URL, and ELEMENT, those that begin with - and end with -ELEMENT, as well as the same names with some lowercase letters are now deprecated, These are names conflict with plain CSS functions that have special syntax.

    See the Sass website for details.

  • In a future release, calls to functions whose names begin with - and end with -expression and -url will no longer have special parsing. For now, these calls are deprecated if their behavior will change in the future.

    See the Sass website for details.

  • Calls to functions whose names begin with - and end with -progid:... are deprecated.

    See the Sass website for details.

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the npm-dependencies group across 1 directory with 10 updates
176c2d4 
Bumps the npm-dependencies group with 10 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@hey-api/openapi-ts](https://github.com/hey-api/openapi-ts) | `0.94.5` | `0.96.0` |
| [@panzoom/panzoom](https://github.com/timmywil/panzoom) | `4.6.1` | `4.6.2` |
| [choices.js](https://github.com/Choices-js/Choices) | `11.2.1` | `11.2.2` |
| [exifreader](https://github.com/mattiasw/ExifReader) | `4.37.0` | `4.38.1` |
| [vue](https://github.com/vuejs/core) | `3.5.31` | `3.5.32` |
| [@vitejs/plugin-vue](https://github.com/vitejs/vite-plugin-vue/tree/HEAD/packages/plugin-vue) | `6.0.5` | `6.0.6` |
| [autoprefixer](https://github.com/postcss/autoprefixer) | `10.4.27` | `10.5.0` |
| [postcss](https://github.com/postcss/postcss) | `8.5.8` | `8.5.10` |
| [prettier](https://github.com/prettier/prettier) | `3.8.1` | `3.8.3` |
| [sass](https://github.com/sass/dart-sass) | `1.98.0` | `1.99.0` |



Updates `@hey-api/openapi-ts` from 0.94.5 to 0.96.0
- [Release notes](https://github.com/hey-api/openapi-ts/releases)
- [Changelog](https://github.com/hey-api/openapi-ts/blob/main/CHANGELOG.md)
- [Commits](https://github.com/hey-api/openapi-ts/commits)

Updates `@panzoom/panzoom` from 4.6.1 to 4.6.2
- [Release notes](https://github.com/timmywil/panzoom/releases)
- [Commits](timmywil/panzoom@4.6.1...4.6.2)

Updates `choices.js` from 11.2.1 to 11.2.2
- [Release notes](https://github.com/Choices-js/Choices/releases)
- [Changelog](https://github.com/Choices-js/Choices/blob/main/CHANGELOG.md)
- [Commits](Choices-js/Choices@v11.2.1...v11.2.2)

Updates `exifreader` from 4.37.0 to 4.38.1
- [Release notes](https://github.com/mattiasw/ExifReader/releases)
- [Changelog](https://github.com/mattiasw/ExifReader/blob/main/CHANGELOG.md)
- [Commits](mattiasw/ExifReader@v4.37.0...v4.38.1)

Updates `vue` from 3.5.31 to 3.5.32
- [Release notes](https://github.com/vuejs/core/releases)
- [Changelog](https://github.com/vuejs/core/blob/main/CHANGELOG.md)
- [Commits](vuejs/core@v3.5.31...v3.5.32)

Updates `@vitejs/plugin-vue` from 6.0.5 to 6.0.6
- [Release notes](https://github.com/vitejs/vite-plugin-vue/releases)
- [Changelog](https://github.com/vitejs/vite-plugin-vue/blob/main/packages/plugin-vue/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite-plugin-vue/commits/plugin-vue@6.0.6/packages/plugin-vue)

Updates `autoprefixer` from 10.4.27 to 10.5.0
- [Release notes](https://github.com/postcss/autoprefixer/releases)
- [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md)
- [Commits](postcss/autoprefixer@10.4.27...10.5.0)

Updates `postcss` from 8.5.8 to 8.5.10
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](postcss/postcss@8.5.8...8.5.10)

Updates `prettier` from 3.8.1 to 3.8.3
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@3.8.1...3.8.3)

Updates `sass` from 1.98.0 to 1.99.0
- [Release notes](https://github.com/sass/dart-sass/releases)
- [Changelog](https://github.com/sass/dart-sass/blob/main/CHANGELOG.md)
- [Commits](sass/dart-sass@1.98.0...1.99.0)

---
updated-dependencies:
- dependency-name: "@hey-api/openapi-ts"
  dependency-version: 0.96.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: "@panzoom/panzoom"
  dependency-version: 4.6.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: choices.js
  dependency-version: 11.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: exifreader
  dependency-version: 4.38.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: vue
  dependency-version: 3.5.32
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: "@vitejs/plugin-vue"
  dependency-version: 6.0.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: autoprefixer
  dependency-version: 10.5.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
- dependency-name: postcss
  dependency-version: 8.5.10
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: prettier
  dependency-version: 3.8.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-dependencies
- dependency-name: sass
  dependency-version: 1.99.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Apr 17, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants