Skip to content

chore(deps): update all non-major dependencies #186

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
renovate merged 1 commit into from
Nov 27, 2025
Merged

chore(deps): update all non-major dependencies #186

renovate merged 1 commit into from
Nov 27, 2025

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Nov 27, 2025

This PR contains the following updates:

Package Change Age Confidence
@eslint/js (source) 9.37.0 -> 9.39.1 age confidence
@swc/core (source) 1.13.5 -> 1.15.3 age confidence
@typescript-eslint/eslint-plugin (source) 8.46.0 -> 8.48.0 age confidence
esbuild 0.25.10 -> 0.27.0 age confidence
eslint (source) 9.37.0 -> 9.39.1 age confidence
pnpm (source) 10.18.2 -> 10.23.0 age confidence
release-it 19.0.5 -> 19.0.6 age confidence
typescript-eslint (source) 8.46.0 -> 8.48.0 age confidence

Release Notes

eslint/eslint (@​eslint/js)

v9.39.1

Compare Source

v9.39.0

Compare Source

v9.38.0

Compare Source

Features
  • ce40f74 feat: update complexity rule to only highlight function header (#​20048) (Atul Nair)
  • e37e590 feat: correct no-loss-of-precision false positives with e notation (#​20187) (Francesco Trotta)
Bug Fixes
  • 50c3dfd fix: improve type support for isolated dependencies in pnpm (#​20201) (Francesco Trotta)
  • a1f06a3 fix: correct SourceCode typings (#​20114) (Pixel998)
Documentation
  • 462675a docs: improve web accessibility by hiding non-semantic character (#​20205) (루밀LuMir)
  • c070e65 docs: correct formatting in no-irregular-whitespace rule documentation (#​20203) (루밀LuMir)
  • b39e71a docs: Update README (GitHub Actions Bot)
  • cd39983 docs: move custom-formatters type descriptions to nodejs-api (#​20190) (Percy Ma)
Chores
swc-project/swc (@​swc/core)

v1.15.3

Compare Source

Bug Fixes

  • (es/codegen) Restore missing top-level comments (#​11302) (0998c93)

  • (es/codegen) Emit comments of all nodes (#​11314) (387ee0f)

  • (es/minifier) Prevent compress.comparisons from transforming expressions with side effects (#​11256) (58a9d81)

  • (es/minifier) Remove unused arrow functions in dead code elimination (#​11319) (88c6ac7)

  • (es/parser) Make the span of Program start at input start (#​11199) (b56e008)

  • (es/plugin) Use #[cfg] to avoid compilation error (#​11316) (f615cdb)

  • (es/quote) Replace usage of swc_atoms with swc_core::atoms (#​11299) (c1e32fa)

Miscellaneous Tasks
Performance
Refactor

v1.15.2

Compare Source

Bug Fixes
Features
Performance

  • (es/parser) Inline skip_space (afb824a)

  • (es/parser) Eliminate the outer loop of skip_block_comment (#​11261) (e41c0ac)

  • (es/plugin) Use shared tokio runtime to avoid creation overhead (#​11267) (707026b)

v1.15.1

Compare Source

Bug Fixes

  • (cli) Print filename to stderr when compiling (#​11249) (d66dab5)

  • (es/minifier) Prevent array destructuring optimization in assignment contexts (#​11221) (99d8b0a)

Features
Miscellaneous Tasks
  • (es/compiler) Drop syntax_ext and prepare AI-based porting (#​11239) (15639c0)
Performance
Refactor

v1.15.0

Compare Source

Bug Fixes
Features
Performance
Refactor
Testing

v1.14.0

Compare Source

Bug Fixes
Features
Miscellaneous Tasks
Performance
Refactor

v1.13.21

Compare Source

Bug Fixes

  • (bindings) Improve ARM64 and Alpine Linux (musl) binary loading and validation (#​11173) (f9be4d7)

  • (es/codegen) Encode non-ASCII chars in regex with ascii_only option (#​11155) (b6f4d1f)

  • (es/compat) Apply Array.prototype.slice to arguments in loose spread (#​11122) (66428a2)

  • (es/compat) Handle sparse arrays correctly in generator transforms (#​11131) (9cd4334)

  • (es/compat) Preserve AutoAccessor to prevent panic (#​11150) (101c3b7)

  • (es/decorators) Emit correct metadata for enum parameters (#​11154) (630484f)

  • (es/helpers) Fix SuppressedError argument order in explicit resource management (#​11172) (7693fb9)

  • (es/minifier) Fix inlining of hoisted functions (#​11159) (bd55d30)

  • (es/minifier) Fix inlining of hoisted functions in param (#​11161) (5a4088d)

  • (es/parser) Handle JSX attributes with keyword prefixes correctly (#​11136) (d3cd97f)

  • (es/parser) Support literal computed property names in enums (#​11163) (146c77c)

  • (es/react) Use correct span for @jsxFrag as null literal (#​11139) (9353763)

  • (es/transforms) Check errors::HANDLER.is_set() before failing (#​11130) (1c9ab27)

Features

  • (bindings) Introduce AST Viewer to improve debugging experience (#​10963) (fa3aacc)

  • (es/minifier) Add merge_imports optimization pass to reduce bundle size (#​11151) (a01dee1)

  • (es/parser) Add an error for empty type args for generic (#​11164) (9a1fa84)

Miscellaneous Tasks

  • (claude) Use Sonnet 4.5 instead of Opus (c79e1e5)

  • (deps) Update lru crate from 0.10.1 to 0.16.1 (#​11145) (e347c5b)

Refactor

v1.13.20

Compare Source

Bug Fixes

  • (es/minifier) Preserve __proto__ shorthand property behavior (#​11123) (63dbd1d)

  • (es/parser) Parse (void) correctly as arrow function return type (#​11125) (d3e5dd3)

Performance

v1.13.19

Compare Source

Bug Fixes
Features
Testing
typescript-eslint/typescript-eslint (@​typescript-eslint/eslint-plugin)

v8.48.0

Compare Source

🚀 Features
  • eslint-plugin: [no-redundant-type-constituents] use assignability checking for redundancy checks (#​10744)
🩹 Fixes
  • typescript-estree: disallow binding patterns in parameter properties (#​11760)
  • eslint-plugin: [consistent-generic-constructors] ignore when constructor is typed array (#​10477)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.47.0

Compare Source

🚀 Features
  • eslint-plugin: [no-unused-private-class-members] new extension rule (#​10913)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.46.4

Compare Source

🩹 Fixes
  • parser: error when both projectService and project are set (#​11333)
  • eslint-plugin: handle override modifier in promise-function-async fixer (#​11730)
  • eslint-plugin: [no-deprecated] fix double-report on computed literal identifiers (#​11006, #​10958)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.46.3

Compare Source

🩹 Fixes
  • eslint-plugin: [no-duplicate-enum-values] support signed numbers (#​11722, #​11723)
  • eslint-plugin: [no-misused-promises] expand union type to retrieve target property (#​11706)
❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.46.2

Compare Source

🩹 Fixes
  • eslint-plugin: [prefer-optional-chain] skip optional chaining when it could change the result (#​11702)
❤️ Thank You
  • mdm317

You can read about our versioning strategy and releases on our website.

v8.46.1

Compare Source

🩹 Fixes
  • eslint-plugin: [no-misused-promises] special-case .finally not to report when a promise returning function is provided as an argument (#​11667)
  • eslint-plugin: [prefer-optional-chain] include mixed "nullish comparison style" chains in checks (#​11533)
❤️ Thank You
  • mdm317
  • Ronen Amiel

You can read about our versioning strategy and releases on our website.

evanw/esbuild (esbuild)

v0.27.0

Compare Source

This release deliberately contains backwards-incompatible changes. To avoid automatically picking up releases like this, you should either be pinning the exact version of esbuild in your package.json file (recommended) or be using a version range syntax that only accepts patch upgrades such as ^0.26.0 or ~0.26.0. See npm's documentation about semver for more information.

  • Use Uint8Array.fromBase64 if available (#​4286)

    With this release, esbuild's binary loader will now use the new Uint8Array.fromBase64 function unless it's unavailable in the configured target environment. If it's unavailable, esbuild's previous code for this will be used as a fallback. Note that this means you may now need to specify target when using this feature with Node (for example --target=node22) unless you're using Node v25+.

  • Update the Go compiler from v1.23.12 to v1.25.4 (#​4208, #​4311)

    This raises the operating system requirements for running esbuild:

    • Linux: now requires a kernel version of 3.2 or later
    • macOS: now requires macOS 12 (Monterey) or later

v0.26.0

Compare Source

  • Enable trusted publishing (#​4281)

    GitHub and npm are recommending that maintainers for packages such as esbuild switch to trusted publishing. With this release, a VM on GitHub will now build and publish all of esbuild's packages to npm instead of me. In theory.

    Unfortunately there isn't really a way to test that this works other than to do it live. So this release is that live test. Hopefully this release is uneventful and is exactly the same as the previous one (well, except for the green provenance attestation checkmark on npm that happens with trusted publishing).

v0.25.12

Compare Source

  • Fix a minification regression with CSS media queries (#​4315)

    The previous release introduced support for parsing media queries which unintentionally introduced a regression with the removal of duplicate media rules during minification. Specifically the grammar for @media <media-type> and <media-condition-without-or> { ... } was missing an equality check for the <media-condition-without-or> part, so rules with different suffix clauses in this position would incorrectly compare equal and be deduplicated. This release fixes the regression.

  • Update the list of known JavaScript globals (#​4310)

    This release updates esbuild's internal list of known JavaScript globals. These are globals that are known to not have side-effects when the property is accessed. For example, accessing the global Array property is considered to be side-effect free but accessing the global scrollY property can trigger a layout, which is a side-effect. This is used by esbuild's tree-shaking to safely remove unused code that is known to be side-effect free. This update adds the following global properties:

    From ES2017:

    • Atomics
    • SharedArrayBuffer

    From ES2020:

    • BigInt64Array
    • BigUint64Array

    From ES2021:

    • FinalizationRegistry
    • WeakRef

    From ES2025:

    • Float16Array
    • Iterator

    Note that this does not indicate that constructing any of these objects is side-effect free, just that accessing the identifier is side-effect free. For example, this now allows esbuild to tree-shake classes that extend from Iterator:

    // This can now be tree-shaken by esbuild:
class ExampleIterator extends Iterator {}

  • Add support for the new @view-transition CSS rule (#​4313)

    With this release, esbuild now has improved support for pretty-printing and minifying the new @view-transition rule (which esbuild was previously unaware of):

    /* Original code */
@&#8203;view-transition {
  navigation: auto;
  types: check;
}

/* Old output */
@&#8203;view-transition { navigation: auto; types: check; }

/* New output */
@&#8203;view-transition {
  navigation: auto;
  types: check;
}

    The new view transition feature provides a mechanism for creating animated transitions between documents in a multi-page app. You can read more about view transition rules here.

    This change was contributed by @​yisibl.

  • Trim CSS rules that will never match

    The CSS minifier will now remove rules whose selectors contain :is() and :where() as those selectors will never match. These selectors can currently be automatically generated by esbuild when you give esbuild nonsensical input such as the following:

    /* Original code */
div:before {
  color: green;
  &.foo {
    color: red;
  }
}

/* Old output (with --supported:nesting=false --minify) */
div:before{color:green}:is().foo{color:red}

/* New output (with --supported:nesting=false --minify) */
div:before{color:green}

    This input is nonsensical because CSS nesting is (unfortunately) not supported inside of pseudo-elements such as :before. Currently esbuild generates a rule containing :is() in this case when you tell esbuild to transform nested CSS into non-nested CSS. I think it's reasonable to do that as it sort of helps explain what's going on (or at least indicates that something is wrong in the output). It shouldn't be present in minified code, however, so this release now strips it out.

v0.25.11

Compare Source

  • Add support for with { type: 'bytes' } imports (#​4292)

    The import bytes proposal has reached stage 2.7 in the TC39 process, which means that although it isn't quite recommended for implementation, it's generally approved and ready for validation. Furthermore it has already been implemented by Deno and Webpack. So with this release, esbuild will also add support for this. It behaves exactly the same as esbuild's existing binary loader. Here's an example:

    import data from './image.png' with { type: 'bytes' }
const view = new DataView(data.buffer, 0, 24)
const width = view.getInt32(16)
const height = view.getInt32(20)
console.log('size:', width + '\xD7' + height)

  • Lower CSS media query range syntax (#​3748, #​4293)

    With this release, esbuild will now transform CSS media query range syntax into equivalent syntax using min-/max- prefixes for older browsers. For example, the following CSS:

    @&#8203;media (640px <= width <= 960px) {
  main {
    display: flex;
  }
}

    will be transformed like this with a target such as --target=chrome100 (or more specifically with --supported:media-range=false if desired):

    @&#8203;media (min-width: 640px) and (max-width: 960px) {
  main {
    display: flex;
  }
}
eslint/eslint (eslint)

v9.39.1

Compare Source

v9.39.0

Compare Source

v9.38.0

Compare Source

Features

  • ce40f74 feat: update complexity rule to only highlight function header (#​20048) (Atul Nair)
  • e37e590 feat: correct no-loss-of-precision false positives with e notation (#​20187) (Francesco Trotta)

Bug Fixes

  • 50c3dfd fix: improve type support for isolated dependencies in pnpm (#​20201) (Francesco Trotta)
  • a1f06a3 fix: correct SourceCode typings (#​20114) (Pixel998)

Documentation

  • 462675a docs: improve web accessibility by hiding non-semantic character (#​20205) (루밀LuMir)
  • c070e65 docs: correct formatting in no-irregular-whitespace rule documentation (#​20203) (루밀LuMir)
  • b39e71a docs: Update README (GitHub Actions Bot)
  • cd39983 docs: move custom-formatters type descriptions to nodejs-api (#​20190) (Percy Ma)

Chores

pnpm/pnpm (pnpm)

v10.23.0: pnpm 10.23

Compare Source

Minor Changes

  • Added --lockfile-only option to pnpm list #​10020.

Patch Changes

  • pnpm self-update should download pnpm from the configured npm registry #​10205.
  • pnpm self-update should always install the non-executable pnpm package (pnpm in the registry) and never the @pnpm/exe package, when installing v11 or newer. We currently cannot ship @pnpm/exe as pkg doesn't work with ESM #​10190.
  • Node.js runtime is not added to "dependencies" on pnpm add, if there's a engines.runtime setting declared in package.json #​10209.
  • The installation should fail if an optional dependency cannot be installed due to a trust policy check failure #​10208.
  • pnpm list and pnpm why now display npm: protocol for aliased packages (e.g., foo npm:[email protected]) #​8660.
  • Don't add an extra slash to the Node.js mirror URL #​10204.
  • pnpm store prune should not fail if the store contains Node.js packages #​10131.

Platinum Sponsors

Bit

Gold Sponsors

Discord CodeRabbit Workleap
Stackblitz Vite

v10.22.0: pnpm 10.22

Compare Source

Minor Changes

  • Added support for trustPolicyExclude #​10164.

    You can now list one or more specific packages or versions that pnpm should allow to install, even if those packages don't satisfy the trust policy requirement. For example:

    trustPolicy: no-downgrade
trustPolicyExclude:
  - [email protected]
  - [email protected] || 5.102.1

  • Allow to override the engines field on publish by the publishConfig.engines field.

Patch Changes

  • Don't crash when two processes of pnpm are hardlinking the contents of a directory to the same destination simultaneously #​10179.

Platinum Sponsors

Bit

Gold Sponsors

Discord CodeRabbit Workleap
Stackblitz Vite

v10.21.0

Compare Source

v10.20.0

[Compare Source](https://redirect.github.com/pnpm/pnpm/compare/v10.19.0...v10.

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, on day 1 of the month ( * 0-3 1 * * ) in timezone Pacific/Auckland, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the dependencies Pull requests that update a dependency file label Nov 27, 2025
@renovate renovate bot enabled auto-merge (squash) November 27, 2025 00:52
@coderabbitai
Copy link

coderabbitai bot commented Nov 27, 2025

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Comment @coderabbitai help to get the list of available commands and usage tips.

@renovate renovate bot merged commit 73efc96 into main Nov 27, 2025
6 checks passed
@renovate renovate bot deleted the renovate/all-minor-patch branch November 27, 2025 00:53
@codecov-commenter
Copy link

codecov-commenter commented Nov 27, 2025

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 100.00%. Comparing base (5a2c6ac) to head (a1594fe).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff            @@
##              main      #186   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files            3         3           
  Lines           33        33           
  Branches         4         4           
=========================================
  Hits            33        33

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@codecov-commenter