Update dependency recharts to v2.15.4 by renovate[bot] · Pull Request #8 · Boomtoknlab/whale-manager

renovate · 2025-08-08T21:42:49Z

This PR contains the following updates:

Package	Change	Age	Confidence
recharts	`2.15.0` → `2.15.4`

Release Notes

recharts/recharts (recharts)

`v2.15.4`

Compare Source

What's Changed

Last 2.x patch - releasing since the @babel/runtime vulnerability is showing up in some security scans. Hoping to release 3.0 on 6/22 🚀

Fix

X/YAxis: fix issue where recharts class names did not get passed to custom tick components by @MyungAe in #5840
Bar: allow minPointSize function to receive null and undefined values by @eino in #5947
TypeScript: fix issue which caused build errors when allowSyntheticDefaultImports: false by @tfaller in #5810

Security

resolve @babel/runtime ReDoS vulnerability (SNYK-JS-BABELRUNTIME-10044504) by @moehaje in #5969
- recharts isn't vulnerable to this per-se, but it does show up in security tooling like snyk

New Contributors

@moehaje made their first contribution in #5969

Full Changelog: recharts/recharts@v2.15.3...v2.15.4

`v2.15.3`

Compare Source

Last patch release before 3.0 🚀

What's Changed

Fix

XAxis: fix padding calculation for padding="gap" and padding="no-gap" when XAxis is type number by @jackfletch in #5759

Full Changelog: recharts/recharts@v2.15.2...v2.15.3

`v2.15.2`

Compare Source

What's Changed

Few bugfixes and bug fix backports for 2.x

Fix

Bar/Rectangle: add index back to Bar Rectangle key to prevent duplicate key issues by @ckifer in #5561
Dot: re-include points object in dotProps by @brodriguezmilla in #5657
Tooltip: add SVGProps to Tooltip payload type to account for svg properties such as opacity passed by the user by @ally1002 in #5712
Tooltip/Bar: fix activeBar prop not working when tooltip shared={false} by @nizans in #5718
General: allow data-* props to be spread on svg elements and not be filtered out by @prtmwrkr in #5666

New Contributors

@brodriguezmilla made their first contribution in #5657
@nizans made their first contribution in #5718

Full Changelog: recharts/recharts@v2.15.1...v2.15.2

`v2.15.1`

Compare Source

What's Changed

Quick patch release, nothing crazy going on here.

In the meantime please help us test recharts 3.0 alpha #5445 🚀

Fix

Legend - Typescript: add dataKey type to legend formatter props by @lucasassisrosa in #5511. Fixes #5508

Chore

Make sure react-smooth version is up to date in package.json for R19 support by @acomanescu in #5422

New Contributors

@acomanescu made their first contribution in #5422
@lucasassisrosa made their first contribution in #5511

Full Changelog: recharts/recharts@v2.15.0...v2.15.1

Configuration

📅 Schedule: (UTC)

Branch creation
- At any time (no schedule defined)
Automerge
- At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

vercel · 2025-08-08T21:42:52Z

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
v0-portfolio	Error		Jun 11, 2026 3:06pm
whale-manager	Error		Jun 11, 2026 3:06pm

socket-security · 2025-08-13T15:32:16Z

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click "▶" to expand/collapse)
Warn		Obfuscated code: npm `@libsql/client-wasm` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: package.json → `npm/@libsql/client-wasm@0.17.3` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@libsql/client-wasm@0.17.3`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `@prisma/client` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: package.json → `npm/@prisma/client@7.8.0` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/@prisma/client@7.8.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		License policy violation: npm `bcryptjs` under BSD-3-Clause-HP License: BSD-3-Clause-HP - The applicable license policy does not permit this license (5) (package/LICENSE) From: package.json → `npm/bcryptjs@3.0.3` ℹ Read more on: This package \| This alert \| What is a license policy violation? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/bcryptjs@3.0.3`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `better-sqlite3` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: package.json → `npm/better-sqlite3@12.10.0` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/better-sqlite3@12.10.0`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `drizzle-orm` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: package.json → `npm/drizzle-orm@0.45.2` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/drizzle-orm@0.45.2`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.
Warn		Obfuscated code: npm `recharts` is 90.0% likely obfuscated Confidence: 0.90 Location: Package overview From: package.json → `npm/recharts@2.15.4` ℹ Read more on: This package \| This alert \| What is obfuscated code? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at `support@socket.dev`. Suggestion: Packages should not obfuscate their code. Consider not using packages with obfuscated code. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment `@SocketSecurity ignore npm/recharts@2.15.4`. You can also ignore all packages with `@SocketSecurity ignore-all`. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

socket-security · 2025-08-31T09:39:40Z

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security
	recharts@2.15.4
	@radix-ui/react-label@2.1.9
	@radix-ui/react-separator@1.1.9
	@radix-ui/react-slot@1.2.5
	@radix-ui/react-tabs@1.1.14
	bun-types@1.3.14
	@radix-ui/react-switch@1.3.0
	@radix-ui/react-toast@1.2.16
	@types/pg@8.20.0
	@types/sql.js@1.4.11
	expo-sqlite@56.0.4
	bcryptjs@3.0.3
	postgres@3.4.7 ⏵ 3.4.9	⁺¹
	@libsql/client-wasm@0.17.3
	@op-engineering/op-sqlite@16.2.0
	express-session@1.19.0
	@tidbcloud/serverless@0.3.0
	cors@2.8.6
	bufferutil@4.1.0
	@prisma/client@7.8.0
	@opentelemetry/api@1.9.1
	@planetscale/database@1.20.1
	gel@2.2.0
	@tanstack/react-query@5.101.0
	better-sqlite3@12.10.0
	@neondatabase/serverless@1.1.0
	drizzle-orm@0.45.2
	pg@8.21.0
	@libsql/client@0.17.3
	express@5.2.1
	knex@3.2.10
	@electric-sql/pglite@0.5.1
See 8 more rows in the dashboard

View full report

vercel Bot had a problem deploying to Preview August 8, 2025 21:43 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 870339a to 0f603d9 Compare August 10, 2025 14:49

vercel Bot had a problem deploying to Preview August 10, 2025 14:50 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch 2 times, most recently from 0cd5556 to e762b4d Compare August 10, 2025 19:56

vercel Bot had a problem deploying to Preview August 10, 2025 19:59 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from e762b4d to 417e3bd Compare August 10, 2025 22:05

vercel Bot had a problem deploying to Preview August 10, 2025 22:07 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 417e3bd to 3d1364b Compare August 13, 2025 15:31

vercel Bot had a problem deploying to Preview August 13, 2025 15:32 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 3d1364b to 9081152 Compare August 19, 2025 18:42

vercel Bot had a problem deploying to Preview August 19, 2025 18:43 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 9081152 to d605c50 Compare August 31, 2025 09:39

vercel Bot had a problem deploying to Preview August 31, 2025 09:40 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from d605c50 to 0c37a95 Compare September 25, 2025 21:34

vercel Bot had a problem deploying to Preview September 25, 2025 21:36 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 0c37a95 to 9743c1c Compare October 21, 2025 16:43

vercel Bot had a problem deploying to Preview October 21, 2025 16:45 Failure

renovate Bot mentioned this pull request Oct 24, 2025

Update lucide monorepo to ^0.577.0 #18

Open

1 task

renovate Bot force-pushed the renovate/recharts-2.x branch from 9743c1c to 5b58f2d Compare November 11, 2025 01:51

vercel Bot had a problem deploying to Preview November 11, 2025 01:52 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 5b58f2d to 06718fe Compare November 18, 2025 14:48

vercel Bot had a problem deploying to Preview November 18, 2025 14:48 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 06718fe to dcd8650 Compare December 3, 2025 17:04

vercel Bot had a problem deploying to Preview December 3, 2025 17:04 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from dcd8650 to d25063f Compare December 31, 2025 15:00

vercel Bot had a problem deploying to Preview December 31, 2025 15:00 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from b415a46 to 7b9b2c4 Compare January 23, 2026 20:40

vercel Bot had a problem deploying to Preview January 23, 2026 20:40 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 7b9b2c4 to 17d6e5d Compare February 2, 2026 19:58

vercel Bot had a problem deploying to Preview February 2, 2026 19:58 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 17d6e5d to 86d7cb5 Compare February 12, 2026 11:54

vercel Bot had a problem deploying to Preview February 12, 2026 11:54 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 86d7cb5 to 2ab4526 Compare February 17, 2026 17:37

vercel Bot had a problem deploying to Preview February 17, 2026 17:37 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 2ab4526 to a4ca96a Compare March 5, 2026 15:41

vercel Bot had a problem deploying to Preview March 5, 2026 15:41 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from a4ca96a to b0ed8ea Compare March 13, 2026 15:03

vercel Bot had a problem deploying to Preview March 13, 2026 15:03 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from b0ed8ea to bf7579d Compare April 1, 2026 16:41

vercel Bot had a problem deploying to Preview April 1, 2026 16:41 Failure

renovate Bot changed the title ~~fix(deps): update dependency recharts to v2.15.4~~ Update dependency recharts to v2.15.4 Apr 8, 2026

renovate Bot force-pushed the renovate/recharts-2.x branch from bf7579d to 3579a07 Compare April 8, 2026 16:44

vercel Bot had a problem deploying to Preview April 8, 2026 16:44 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 3579a07 to 1293d47 Compare April 29, 2026 20:49

vercel Bot had a problem deploying to Preview April 29, 2026 20:49 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 1293d47 to 45638dd Compare May 12, 2026 09:38

vercel Bot had a problem deploying to Preview May 12, 2026 09:38 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 45638dd to 774cfde Compare May 18, 2026 09:27

vercel Bot had a problem deploying to Preview May 18, 2026 09:27 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 774cfde to 51c16fe Compare May 28, 2026 21:11

vercel Bot had a problem deploying to Preview May 28, 2026 21:11 Failure

renovate Bot force-pushed the renovate/recharts-2.x branch from 51c16fe to c9d4c54 Compare June 1, 2026 20:39

vercel Bot had a problem deploying to Preview June 1, 2026 20:39 Failure

Update dependency recharts to v2.15.4

563dd0e

renovate Bot force-pushed the renovate/recharts-2.x branch from c9d4c54 to 563dd0e Compare June 11, 2026 15:06

vercel Bot had a problem deploying to Preview June 11, 2026 15:06 Failure

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update dependency recharts to v2.15.4#8

Update dependency recharts to v2.15.4#8
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/recharts-2.x

renovate Bot commented Aug 8, 2025 •

edited

Loading

Uh oh!

vercel Bot commented Aug 8, 2025 •

edited

Loading

Uh oh!

socket-security Bot commented Aug 13, 2025 •

edited

Loading

Uh oh!

socket-security Bot commented Aug 31, 2025 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

renovate Bot commented Aug 8, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

v2.15.4

What's Changed

Fix

Security

New Contributors

v2.15.3

What's Changed

Fix

v2.15.2

What's Changed

Fix

New Contributors

v2.15.1

What's Changed

Fix

Chore

New Contributors

Configuration

Uh oh!

vercel Bot commented Aug 8, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

socket-security Bot commented Aug 13, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

socket-security Bot commented Aug 31, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

renovate Bot commented Aug 8, 2025 •

edited

Loading

`v2.15.4`

`v2.15.3`

`v2.15.2`

`v2.15.1`

vercel Bot commented Aug 8, 2025 •

edited

Loading

socket-security Bot commented Aug 13, 2025 •

edited

Loading

socket-security Bot commented Aug 31, 2025 •

edited

Loading