chore(deps): bump the npm-deps group across 1 directory with 7 updates#47
Conversation
Bumps the npm-deps group with 6 updates in the / directory: | Package | From | To | | --- | --- | --- | | [@better-auth/oauth-provider](https://github.com/better-auth/better-auth/tree/HEAD/packages/oauth-provider) | `1.6.20` | `1.6.23` | | [@hono/node-server](https://github.com/honojs/node-server) | `2.0.6` | `2.0.8` | | [hono](https://github.com/honojs/hono) | `4.12.27` | `4.12.28` | | [@commitlint/cli](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/cli) | `21.1.0` | `21.2.1` | | [eslint](https://github.com/eslint/eslint) | `10.5.0` | `10.6.0` | | [prettier](https://github.com/prettier/prettier) | `3.8.4` | `3.9.4` | Updates `@better-auth/oauth-provider` from 1.6.20 to 1.6.23 - [Release notes](https://github.com/better-auth/better-auth/releases) - [Changelog](https://github.com/better-auth/better-auth/blob/main/packages/oauth-provider/CHANGELOG.md) - [Commits](https://github.com/better-auth/better-auth/commits/v1.6.23/packages/oauth-provider) Updates `@hono/node-server` from 2.0.6 to 2.0.8 - [Release notes](https://github.com/honojs/node-server/releases) - [Commits](honojs/node-server@v2.0.6...v2.0.8) Updates `better-auth` from 1.6.20 to 1.6.23 - [Release notes](https://github.com/better-auth/better-auth/releases) - [Changelog](https://github.com/better-auth/better-auth/blob/main/packages/better-auth/CHANGELOG.md) - [Commits](https://github.com/better-auth/better-auth/commits/v1.6.23/packages/better-auth) Updates `hono` from 4.12.27 to 4.12.28 - [Release notes](https://github.com/honojs/hono/releases) - [Commits](honojs/hono@v4.12.27...v4.12.28) Updates `@commitlint/cli` from 21.1.0 to 21.2.1 - [Release notes](https://github.com/conventional-changelog/commitlint/releases) - [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/cli/CHANGELOG.md) - [Commits](https://github.com/conventional-changelog/commitlint/commits/v21.2.1/@commitlint/cli) Updates `eslint` from 10.5.0 to 10.6.0 - [Release notes](https://github.com/eslint/eslint/releases) - [Commits](eslint/eslint@v10.5.0...v10.6.0) Updates `prettier` from 3.8.4 to 3.9.4 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](prettier/prettier@3.8.4...3.9.4) --- updated-dependencies: - dependency-name: "@better-auth/oauth-provider" dependency-version: 1.6.23 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-deps - dependency-name: "@hono/node-server" dependency-version: 2.0.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-deps - dependency-name: better-auth dependency-version: 1.6.23 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-deps - dependency-name: hono dependency-version: 4.12.28 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm-deps - dependency-name: "@commitlint/cli" dependency-version: 21.2.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-deps - dependency-name: eslint dependency-version: 10.6.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-deps - dependency-name: prettier dependency-version: 3.9.4 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-deps ... Signed-off-by: dependabot[bot] <support@github.com>
Dependency Upgrade Review: 7 packages across npm-deps groupPR ScopeDependency-only — only Dependency Changes
Changes & Usage Analysisbetter-auth v1.6.20 → 1.6.23 — Used: @better-auth/oauth-provider v1.6.20 → 1.6.23 — Used: hono v4.12.27 → 4.12.28 — Used: @hono/node-server v2.0.6 → 2.0.8 — Used: @commitlint/cli v21.1.0 → 21.2.1 — ESM preset resolution + internal migration from eslint v10.5.0 → 10.6.0 — Bug fixes and new detections in existing rules. Backward-compatible. prettier v3.8.4 → 3.9.4 — v3.9.0 was a major parser upgrade. Run Compatibility AssessmentCompatible — All upgrades are minor/patch bumps with no breaking changes. No used APIs are affected. Test Coverage38 passing feature tests covering auth flows, routes, and components. Coverage: 67% lines. Tests would catch regressions in the main dependency APIs. Confidence RatingHigh — clean, low-risk group upgrade. All changes backward-compatible, no DB migration needed (2FA not configured), test suite in place. |
mroderick
left a comment
There was a problem hiding this comment.
Approved. See analysis comment above.
Bumps the npm-deps group with 6 updates in the / directory:
1.6.201.6.232.0.62.0.84.12.274.12.2821.1.021.2.110.5.010.6.03.8.43.9.4Updates
@better-auth/oauth-providerfrom 1.6.20 to 1.6.23Release notes
Sourced from @better-auth/oauth-provider's releases.
... (truncated)
Changelog
Sourced from @better-auth/oauth-provider's changelog.
Commits
9dfceeechore: release v1.6.23 (#10260)a90d061chore: release v1.6.22 (#10245)414169dchore: release v1.6.21 (#10184)Updates
@hono/node-serverfrom 2.0.6 to 2.0.8Release notes
Sourced from @hono/node-server's releases.
Commits
114c15e2.0.85db2d5dci(release): add--no-git-checksoption forpnpm stage publish(#369)a528a772.0.7b2d610cchore: bumpsupertest(#368)1b0040afix(serve-static): serve precompressed files for application/octet-stream (#366)ad5b13achore: migrate to pnpm (#367)Updates
better-authfrom 1.6.20 to 1.6.23Release notes
Sourced from better-auth's releases.
... (truncated)
Changelog
Sourced from better-auth's changelog.
... (truncated)
Commits
9dfceeechore: release v1.6.23 (#10260)8581f97feat(oauth): add Yandex social provider (#9138)a90d061chore: release v1.6.22 (#10245)3a035e9fix(two-factor): add account-level verification lockout (#10240)c06a56dfix: revoke unproven credentials on magic-link/email-OTP sign-in (#10239)414169dchore: release v1.6.21 (#10184)f52e1abfix(device-authorization): makeschemaoption optional under Zod v4 (#9939)882cf9efix(admin): use authoritative session reads for authorization (#10187)b5bec19fix(oauth): apply user input rules to provider profiles (#10196)471f81crefactor: centralize request IP resolver in core (#10216)Updates
honofrom 4.12.27 to 4.12.28Release notes
Sourced from hono's releases.
Commits
626b1854.12.28d6b1d32docs(context-storage): fix JSDoc (#5086)45b081bfix(aws-lambda): detect V2 events by request context, not rawPath alone (#5033)a05813cchore: bumpdevDependencies(#5085)872997dfix(bun): report the requested subprotocol on WSContext.protocol (#5059)82b321bfix: avoid circular dependency between body.ts and request.ts (#5071)b20d422fix(utils/body,validator): normalize Content-Type media type for case-insensi...9728702chore: don't publish*.tsbuildinfo(#5066)ed8795edocs(MIGRATION): fix req.raw.headers reference (property, not method) (#5047)03a9416fix(serve-static): treat empty string content as found (#5062)Updates
@commitlint/clifrom 21.1.0 to 21.2.1Release notes
Sourced from @commitlint/cli's releases.
Changelog
Sourced from @commitlint/cli's changelog.
Commits
6e20041v21.2.11b4e5bcv21.2.0fdb566ffeat(resolve-extends): resolve pure-ESM presets (conventional-changelog v7/v9...Updates
eslintfrom 10.5.0 to 10.6.0Release notes
Sourced from eslint's releases.
Commits
5d12a0410.6.0f7ca54bBuild: changelog update for 10.6.06a42034ci: run ecosystem tests on main branch (#20891)b1f9106feat: detect Symbol() and BigInt() in no-constant-binary-expression (#20981)3dbacdbci: bump actions/checkout from 6 to 7 (#21014)c3abfcachore: correct JSDoc param types in html formatter (#21018)a83683ddocs: Update READMEa832320ci: split ecosystem tests into separate jobs (#21001)6b05784fix: prefer-exponentiation-operator invalid autofix at statement start (#20997)bb9eb2afix: account for shadowedBooleaninno-extra-boolean-cast(#21013)Updates
prettierfrom 3.8.4 to 3.9.4Release notes
Sourced from prettier's releases.
Changelog
Sourced from prettier's changelog.
... (truncated)
Commits
b693cb2Release 3.9.42e92ac0Angular: Format@content(name)->@content (name)to align with other blo...abed2c2Bump Prettier dependency to 3.9.36cfbc00Clean changelog_unreleased3732e1dRelease 3.9.3a74a7b0Allow decorators to be used withdeclareon class fields (#19492)bd9e11aCorrect text identification in liquid syntax (#19489)269eee3Bump Prettier dependency to 3.9.1ec7ccd1Clean changelog_unreleasedc47654cRelease 3.9.1Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions