{"id":573,"name":"formidable","ecosystem":"npm","repository_url":"https://github.com/node-formidable/formidable","issues_count":948,"created_at":"2025-06-06T15:01:35.457Z","updated_at":"2025-06-06T15:01:35.457Z","purl":"pkg:npm/formidable","metadata":{"id":1735086,"name":"formidable","ecosystem":"npm","description":"The oldest and most popular Node.js form parsing library, with support for multipart/form-data, file uploads, and more.","homepage":"https://github.com/node-formidable/formidable","licenses":"MIT","normalized_licenses":["MIT"],"repository_url":"https://github.com/node-formidable/formidable","keywords_array":["form","parser","nodejs","multipart","multipart/form-data","formdata","form-data","files","file uploads"],"namespace":null,"versions_count":90,"first_release_published_at":"2011-01-18T21:38:52.010Z","latest_release_published_at":"2025-04-23T01:58:45.608Z","latest_release_number":"3.5.4","last_synced_at":"2025-06-05T21:30:25.465Z","created_at":"2022-04-09T15:49:31.400Z","updated_at":"2025-06-05T21:30:25.465Z","registry_url":"https://www.npmjs.com/package/formidable","install_command":"npm install formidable","documentation_url":null,"metadata":{"funding":null,"dist-tags":{"legacy":"1.2.6","v1":"1.2.6","latest":"3.5.4","v2-latest":"2.1.5","next":"4.0.0-rc.6"}},"repo_metadata":{"id":37633703,"uuid":"655209","full_name":"node-formidable/formidable","owner":"node-formidable","description":"The most used, flexible, fast and streaming parser for multipart form data. Supports uploading to serverless environments, AWS S3, Azure, GCP or the filesystem. Used in production.","archived":false,"fork":false,"pushed_at":"2024-11-03T00:09:45.000Z","size":4358,"stargazers_count":7054,"open_issues_count":48,"forks_count":682,"subscribers_count":114,"default_branch":"master","last_synced_at":"2024-11-05T19:45:51.260Z","etag":null,"topics":["aws-lambda","aws-s3","azure","azure-storage","file-upload","form","formdata","formidable","incomingform","multipart","multipart-formdata","multipart-parser","querystring-parser","serverless"],"latest_commit_sha":null,"homepage":"","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/node-formidable.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2010-05-07T15:50:21.000Z","updated_at":"2024-11-05T09:23:52.000Z","dependencies_parsed_at":"2024-11-05T19:56:51.871Z","dependency_job_id":null,"html_url":"https://github.com/node-formidable/formidable","commit_stats":{"total_commits":624,"total_committers":97,"mean_commits":6.43298969072165,"dds":0.7115384615384616,"last_synced_commit":"152e940c1e84973eccfbb455711bd437692c7fef"},"previous_names":["felixge/node-formidable","node-formidable/node-formidable"],"tags_count":52,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/node-formidable","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":223408025,"owners_count":17140561,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"node-formidable","name":"node-formidable","uuid":"43678974","kind":"organization","description":"The most used, flexible, fast and streaming parser for multipart form data, on @nodejs","email":null,"website":"https://ko-fi.com/tunnckocore/commissions","location":"Worldwide / Remote","twitter":"tunnckoCore","company":null,"icon_url":"https://avatars.githubusercontent.com/u/43678974?v=4","repositories_count":2,"last_synced_at":"2024-03-25T20:01:13.499Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/node-formidable","funding_links":[],"total_stars":6919,"followers":15,"following":0,"created_at":"2022-11-02T16:23:06.307Z","updated_at":"2024-03-25T20:01:14.847Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/node-formidable","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/node-formidable/repositories"},"tags":[{"name":"v3.5.2","sha":"152e940c1e84973eccfbb455711bd437692c7fef","kind":"commit","published_at":"2024-10-21T14:05:52.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v3.5.2","html_url":"https://github.com/node-formidable/formidable/releases/tag/v3.5.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.5.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.5.2/manifests"},{"name":"v3.5.1","sha":"1699ec6fcb6fb01b2f7cacb735fea997358b00a5","kind":"tag","published_at":"2023-08-25T14:47:55.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v3.5.1","html_url":"https://github.com/node-formidable/formidable/releases/tag/v3.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.5.1/manifests"},{"name":"v3.5.0","sha":"009d3f22ac7ab775f18919d04c6e620e27c093b4","kind":"tag","published_at":"2023-06-28T21:12:13.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v3.5.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v3.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.5.0/manifests"},{"name":"v3.4.0","sha":"e4f29e726e12db7dd948b2302139fb202ad69b34","kind":"tag","published_at":"2023-06-17T08:07:32.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v3.4.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v3.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.4.0/manifests"},{"name":"v3.3.2","sha":"c2499229318dd22ae5bc65bd8c4eb384c3e9a841","kind":"tag","published_at":"2023-06-16T11:10:55.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v3.3.2","html_url":"https://github.com/node-formidable/formidable/releases/tag/v3.3.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.3.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.3.2/manifests"},{"name":"v2.1.0","sha":"6da191c2eb926fbe5b146d67826ca9a8b8ddac0f","kind":"tag","published_at":"2022-12-01T18:14:24.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v2.1.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v2.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v2.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v2.1.0/manifests"},{"name":"v3.2.5","sha":"8e99cfb31e6b0cf1eee96b84007eaaf2fe8528f4","kind":"tag","published_at":"2022-10-04T14:10:59.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v3.2.5","html_url":"https://github.com/node-formidable/formidable/releases/tag/v3.2.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.2.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.2.5/manifests"},{"name":"v3.2.4","sha":"81dd350835e14dccca667fc46bc5c35f16f1b5ec","kind":"commit","published_at":"2022-05-19T10:13:31.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v3.2.4","html_url":"https://github.com/node-formidable/formidable/releases/tag/v3.2.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.2.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v3.2.4/manifests"},{"name":"3.2.0","sha":"fac24dc273e64ccfa48f40a21c240b684f45ebce","kind":"tag","published_at":"2021-12-09T14:27:04.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/3.2.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/3.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/3.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/3.2.0/manifests"},{"name":"3.1.4","sha":"5706c14b0c65817588cd1673f10ed7419b59628a","kind":"commit","published_at":"2021-11-30T15:26:35.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/3.1.4","html_url":"https://github.com/node-formidable/formidable/releases/tag/3.1.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/3.1.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/3.1.4/manifests"},{"name":"v1.2.3","sha":"7e07387c295cbd19f563a99bd91cadd0e18e406b","kind":"tag","published_at":"2021-04-09T19:06:51.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.2.3","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.2.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.2.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.2.3/manifests"},{"name":"v1.2.1","sha":"bd73dde95316d6d3bd1934ce5740aae867dd5af1","kind":"tag","published_at":"2018-03-20T15:28:27.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.2.1","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.2.1/manifests"},{"name":"v1.2.0","sha":"02fe17120037a2c54b4af005a14dc93b4881c0bc","kind":"tag","published_at":"2018-03-07T13:11:13.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.2.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.2.0/manifests"},{"name":"v1.1.1","sha":"bbbc11244668c1af361a5d33ccc091e411cd2f43","kind":"tag","published_at":"2017-01-15T20:51:40.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.1.1","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.1.1/manifests"},{"name":"v1.0.17","sha":"3f32e6462ef6d49efc3445fef7987b1d76fa1768","kind":"tag","published_at":"2015-01-18T11:04:47.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.17","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.17","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.17","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.17/manifests"},{"name":"v1.0.16","sha":"44c686aea0f97faf273a60cf2faa96cee32dec80","kind":"tag","published_at":"2014-12-18T10:21:10.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.16","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.16","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.16","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.16/manifests"},{"name":"v1.0.15","sha":"5bf869a054040e2ee5805a56f50e7019ed13b494","kind":"tag","published_at":"2014-06-17T11:19:31.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.15","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.15","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.15","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.15/manifests"},{"name":"v1.0.14","sha":"ba7b3ef6ce0da1f7f98e9556b2b68f565e644716","kind":"commit","published_at":"2013-05-02T21:09:23.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.14","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.14","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.14","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.14/manifests"},{"name":"v1.0.13","sha":"33be78afe034ed8e08e4037c3e068e3c9276cba8","kind":"commit","published_at":"2013-03-16T19:41:41.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.13","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.13","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.13","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.13/manifests"},{"name":"v1.0.12","sha":"f102c78afb62d8db00a0526c7edc5bdbf2705704","kind":"commit","published_at":"2013-02-21T14:26:15.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.12","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.12","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.12/manifests"},{"name":"v1.0.11","sha":"dd8dd7acd416c4fbaf0161f27136bbfcb5fab764","kind":"commit","published_at":"2012-06-04T10:16:07.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.11","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.11/manifests"},{"name":"v1.0.10","sha":"bcaa95df45a7045904567024a60e8faf8bc1d8a6","kind":"commit","published_at":"2012-06-03T20:18:44.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.10","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.10/manifests"},{"name":"v1.0.9","sha":"7fd5c52d48c7c6cdee15c25d83c812bdfdc9aa74","kind":"commit","published_at":"2012-02-16T13:31:18.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.9","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.9/manifests"},{"name":"v1.0.8","sha":"686ae7d76c2724825676812c6ac37d8d4e278507","kind":"commit","published_at":"2011-11-28T09:10:10.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.8","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.8/manifests"},{"name":"v1.0.7","sha":"ba23a96240e9411de7c70aeae0c7e6765eb4d70b","kind":"commit","published_at":"2011-11-04T09:28:12.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.7","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.7/manifests"},{"name":"v1.0.6","sha":"ee807d50c136eeec40acaab445313787d0a028b9","kind":"commit","published_at":"2011-09-21T06:17:23.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.6","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.6/manifests"},{"name":"v1.0.5","sha":"b2e64e3920324adb958a9c2fa4d35b9722427b89","kind":"commit","published_at":"2011-09-16T19:48:28.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.5","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.5/manifests"},{"name":"v1.0.4","sha":"6b653487e91168df6ff47fa409c17cb8ce16000c","kind":"commit","published_at":"2011-09-15T21:53:44.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.4","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.4/manifests"},{"name":"v1.0.3","sha":"55634e9785ce5146bb72eb2b3264c2bbaa624d5c","kind":"commit","published_at":"2011-09-10T17:51:19.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.3","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.3/manifests"},{"name":"v1.0.2","sha":"a01d5b49a2319eedba91826d9633a069817f7d83","kind":"commit","published_at":"2011-05-23T10:10:06.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.2","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.2/manifests"},{"name":"v1.0.1","sha":"30fcda91720aedbce8d4db5cb53773028ff229dd","kind":"commit","published_at":"2011-04-27T12:08:35.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.1","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.1/manifests"},{"name":"v1.0.0","sha":"d07bc76a185cbf662ad31ee1f421533ad1eb677b","kind":"commit","published_at":"2011-04-13T20:42:17.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v1.0.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v1.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v1.0.0/manifests"},{"name":"v0.9.11","sha":"63347d825bbeb30f1effadf153e537a641c3d0d4","kind":"commit","published_at":"2011-01-18T21:41:41.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.9.11","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.9.11","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.11/manifests"},{"name":"v0.9.10","sha":"2b021449cd0236c1637c5f117437ef9980368dc8","kind":"commit","published_at":"2010-12-15T19:27:20.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.9.10","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.9.10","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.10/manifests"},{"name":"v0.9.9","sha":"229dc69b8986dab21e0b5a3e0308efd317cac175","kind":"commit","published_at":"2010-10-19T07:40:37.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.9.9","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.9.9","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.9/manifests"},{"name":"v0.9.8","sha":"6ccf2d5342b6d12e945881522916e751a9716c1c","kind":"commit","published_at":"2010-09-08T15:53:33.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.9.8","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.9.8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.8/manifests"},{"name":"v0.9.7","sha":"3f11e89a4f9adef42d3869eaf41e85adbb382841","kind":"commit","published_at":"2010-07-17T12:24:53.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.9.7","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.9.7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.7/manifests"},{"name":"v0.9.6","sha":"18de5c65be115a26af8d002bfb69b3660f8bd412","kind":"commit","published_at":"2010-07-17T12:00:15.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.9.6","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.9.6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.6/manifests"},{"name":"v0.9.5","sha":"464fc9d56696b4cf7ca70367f9c8e7d3f71086a0","kind":"commit","published_at":"2010-07-15T15:30:47.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.9.5","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.9.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.5/manifests"},{"name":"v0.9.4","sha":"857559ef555425be6a33746ac6edec3b45367370","kind":"commit","published_at":"2010-06-29T19:19:23.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.9.4","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.9.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.4/manifests"},{"name":"v0.9.3","sha":"a6922ef747b011ab2fc6067de5d35a5257b4a238","kind":"commit","published_at":"2010-06-26T09:42:08.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.9.3","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.9.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.3/manifests"},{"name":"v0.9.2","sha":"a12f8a90d2091f09e9729c58e4b0a9a67115935d","kind":"commit","published_at":"2010-06-22T08:44:12.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.9.2","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.9.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.2/manifests"},{"name":"v0.9.1","sha":"cd5686bbed7b06a8de9db6fd5d80b6387b51ee29","kind":"commit","published_at":"2010-06-16T22:05:19.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.9.1","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.9.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.1/manifests"},{"name":"v0.9.0","sha":"af57e615f944abcaedad160a544c41801a72bbbd","kind":"commit","published_at":"2010-06-14T14:41:17.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.9.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.9.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.9.0/manifests"},{"name":"v0.8.0","sha":"55c7fa47230d8628a3148c7635ddce432484145f","kind":"commit","published_at":"2010-06-13T15:35:34.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.8.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.8.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.8.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.8.0/manifests"},{"name":"v0.7.0","sha":"37b467b733bb607e231de1d8fca36ffba177d380","kind":"commit","published_at":"2010-06-13T11:19:52.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.7.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.7.0/manifests"},{"name":"v0.6.0","sha":"bb116ff7e46d0477ce9594ca1ea08f55b6f766e4","kind":"commit","published_at":"2010-06-02T07:11:28.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.6.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.6.0/manifests"},{"name":"v0.5.0","sha":"4043e4256021be8d1847851404578e9c263401a8","kind":"commit","published_at":"2010-06-01T16:32:58.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.5.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.5.0/manifests"},{"name":"v0.4.0","sha":"20442885aac6042eb2cd55909183f0f81e8a07d9","kind":"commit","published_at":"2010-06-01T09:33:42.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.4.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.4.0/manifests"},{"name":"v0.3.0","sha":"0ace252e12cd9aa18e668c8bdc000da266fe3e0d","kind":"commit","published_at":"2010-05-24T15:41:41.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.3.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.3.0/manifests"},{"name":"v0.2.0","sha":"cf68a021e58e386d3b1b5f514d495f107eece551","kind":"commit","published_at":"2010-05-23T13:42:33.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.2.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.2.0/manifests"},{"name":"v0.1.0","sha":"461e2cf1c7ed7c722e339d7a514adc9f6651c42a","kind":"commit","published_at":"2010-05-18T21:59:21.000Z","download_url":"https://codeload.github.com/node-formidable/formidable/tar.gz/v0.1.0","html_url":"https://github.com/node-formidable/formidable/releases/tag/v0.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/node-formidable%2Fformidable/tags/v0.1.0/manifests"}]},"repo_metadata_updated_at":"2024-11-06T20:11:56.987Z","dependent_packages_count":2148,"downloads":52421734,"downloads_period":"last-month","dependent_repos_count":525124,"rankings":{"downloads":0.03981026874943187,"dependent_repos_count":0.05073481980240526,"dependent_packages_count":0.03699014654778711,"stargazers_count":1.21218708964484,"forks_count":1.4170703365856918,"docker_downloads_count":0.04788731777356007,"average":0.46744666318395267},"purl":"pkg:npm/formidable","advisories":[{"uuid":"GSA_kwCzR0hTQS04Y3AzLTY2dnItM3I0Y84AAX69","url":"https://github.com/advisories/GHSA-8cp3-66vr-3r4c","title":"Formidable arbitrary file upload","description":"Withdrawn: This advisory was improperly assigned.\n\nAn arbitrary file upload vulnerability in formidable v3.2.4 allows attackers to execute arbitrary code via a crafted filename.\n\n","origin":"UNSPECIFIED","severity":"CRITICAL","published_at":"2022-05-17T00:01:45.000Z","withdrawn_at":"2024-04-25T16:59:44.000Z","classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2022-29622","https://www.youtube.com/watch?v=C6QPKooxhAo","https://github.com/node-formidable/formidable/issues/856","https://github.com/node-formidable/formidable/pull/857","https://gitlab.com/keymandll/blog/-/blob/master/posts/03062022-Invulnerability_Analysis-CVE-2022%E2%80%9329622/index.md","https://portswigger.net/daily-swig/researcher-defends-formidable-in-fight-against-critical-cve-vulnerability-assignment","https://github.com/node-formidable/formidable/issues/862","https://github.com/strapi/strapi/issues/20189","https://medium.com/%40zsolt.imre/is-cybersecurity-the-next-supply-chain-vulnerability-9a00de745022","https://github.com/advisories/GHSA-8cp3-66vr-3r4c"],"source_kind":"github","identifiers":["GHSA-8cp3-66vr-3r4c","CVE-2022-29622"],"repository_url":"https://github.com/node-formidable/formidable","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"3.2.4","vulnerable_version_range":"\u003c 3.2.4"}],"ecosystem":"npm","package_name":"formidable"}],"created_at":"2024-04-23T00:05:31.913Z","updated_at":"2024-05-01T13:11:38.000Z","epss_percentage":0.305,"epss_percentile":0.96436},{"uuid":"GSA_kwCzR0hTQS03NXY4LTJoN3AtN20ybc4ABHMZ","url":"https://github.com/advisories/GHSA-75v8-2h7p-7m2m","title":"Formidable relies on hexoid to prevent guessing of filenames for untrusted executable content","description":"Formidable (aka node-formidable) 2.x before 2.1.3 and 3.x before 3.5.3 relies on hexoid to prevent guessing of filenames for untrusted executable content; however, hexoid is documented as not \"cryptographically secure.\" (Also, there is a scenario in which only the last two characters of a hexoid string need to be guessed, but this is not often relevant.) NOTE: this does not imply that, in a typical use case, attackers will be able to exploit any hexoid behavior to upload and execute their own content.","origin":"UNSPECIFIED","severity":"LOW","published_at":"2025-04-26T21:31:26.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2025-46653","https://github.com/node-formidable/formidable/commit/022c2c5577dfe14d2947f10909d81b03b6070bf5","https://github.com/node-formidable/formidable/blob/d0fbec13edc8add54a1afb9ce1a8d3db803f8d47/CHANGELOG.md?plain=1#L10","https://github.com/zast-ai/vulnerability-reports/blob/main/formidable/file_upload/report.md","https://github.com/node-formidable/formidable/commit/37a3e89fca1ed68ec674a539f13aafd62221ddaa","https://www.npmjs.com/package/formidable/v/2.1.3","https://www.npmjs.com/package/formidable/v/3.5.3","https://github.com/advisories/GHSA-75v8-2h7p-7m2m"],"source_kind":"github","identifiers":["GHSA-75v8-2h7p-7m2m","CVE-2025-46653"],"repository_url":"https://github.com/node-formidable/formidable","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"2.1.3","vulnerable_version_range":"\u003e= 2.1.0, \u003c 2.1.3"},{"first_patched_version":"3.5.3","vulnerable_version_range":"\u003e= 3.1.1-canary.20211030, \u003c 3.5.3"}],"ecosystem":"npm","package_name":"formidable"}],"created_at":"2025-04-29T15:09:14.061Z","updated_at":"2025-05-27T18:49:22.000Z","epss_percentage":0.0003,"epss_percentile":0.07102}],"docker_usage_url":"https://docker.ecosyste.ms/usage/npm/formidable","docker_dependents_count":8144,"docker_downloads_count":1376882473,"usage_url":"https://repos.ecosyste.ms/usage/npm/formidable","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/npm/formidable/dependencies","status":null,"funding_links":[],"critical":true,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/formidable/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/formidable/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/formidable/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/formidable/related_packages","maintainers":[{"uuid":"tunnckocore","login":"tunnckocore","name":null,"email":"mameto2011@gmail.com","url":null,"packages_count":515,"html_url":"https://www.npmjs.com/~tunnckocore","role":null,"created_at":"2022-11-10T11:33:09.121Z","updated_at":"2022-11-10T11:33:09.121Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/tunnckocore/packages"},{"uuid":"felixge","login":"felixge","name":null,"email":"felix@debuggable.com","url":null,"packages_count":49,"html_url":"https://www.npmjs.com/~felixge","role":null,"created_at":"2022-11-10T11:33:09.111Z","updated_at":"2022-11-10T11:33:09.111Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/felixge/packages"},{"uuid":"kornel","login":"kornel","name":null,"email":"npmspam@geekhood.net","url":null,"packages_count":16,"html_url":"https://www.npmjs.com/~kornel","role":null,"created_at":"2022-11-10T11:33:09.115Z","updated_at":"2022-11-10T11:33:09.115Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/kornel/packages"},{"uuid":"grossacasacs","login":"grossacasacs","name":null,"email":"cyril.walle@protonmail.com","url":null,"packages_count":27,"html_url":"https://www.npmjs.com/~grossacasacs","role":null,"created_at":"2022-11-10T11:33:09.118Z","updated_at":"2022-11-10T11:33:09.118Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/grossacasacs/packages"},{"uuid":"quantumsheep","login":"quantumsheep","name":null,"email":"nathanael.dmc@outlook.fr","url":null,"packages_count":81,"html_url":"https://www.npmjs.com/~quantumsheep","role":null,"created_at":"2022-11-10T11:33:09.124Z","updated_at":"2022-11-10T11:33:09.124Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/quantumsheep/packages"}],"registry":{"name":"npmjs.org","url":"https://registry.npmjs.org","ecosystem":"npm","default":true,"packages_count":5005316,"maintainers_count":1012639,"namespaces_count":295318,"keywords_count":699769,"github":"npm","metadata":{"funded_packages_count":150180},"icon_url":"https://github.com/npm.png","created_at":"2022-04-04T15:19:23.081Z","updated_at":"2025-06-05T05:52:15.849Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/namespaces"}},"unique_repositories_count":744,"unique_repositories_count_past_30_days":2,"recent_issues":[{"uuid":"4605329155","node_id":"PR_kwDOLxKLkM7jhsQr","number":9,"state":"open","title":"Bump the npm_and_yarn group across 1 directory with 17 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-06T22:27:48.000Z","updated_at":"2026-06-06T22:28:20.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":17,"packages":[{"name":"aws-sdk","old_version":"2.1487.0","new_version":"2.1693.0","repository_url":"https://github.com/aws/aws-sdk-js"},{"name":"formidable","old_version":"3.5.1","new_version":"3.5.4","repository_url":"https://github.com/node-formidable/formidable"},{"name":"jspdf","old_version":"2.5.1","new_version":"4.2.1","repository_url":"https://github.com/parallax/jsPDF"},{"name":"next","old_version":"14.0.1","new_version":"16.2.7","repository_url":"https://github.com/vercel/next.js"},{"name":"uuid","old_version":"9.0.1","new_version":"14.0.0","repository_url":"https://github.com/uuidjs/uuid"},{"name":"postcss","old_version":"8.4.31","new_version":"8.5.10","repository_url":"https://github.com/postcss/postcss"},{"name":"braces","old_version":"3.0.2","new_version":"3.0.3","repository_url":"https://github.com/micromatch/braces"},{"name":"flatted","old_version":"3.2.9","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"js-yaml","old_version":"4.1.0","new_version":"4.2.0","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"tar-fs","old_version":"2.1.3","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"ws","old_version":"8.14.2","new_version":"8.21.0","repository_url":"https://github.com/websockets/ws"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 13 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk](https://github.com/aws/aws-sdk-js) | `2.1487.0` | `2.1693.0` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.1` | `3.5.4` |\n| [jspdf](https://github.com/parallax/jsPDF) | `2.5.1` | `4.2.1` |\n| [next](https://github.com/vercel/next.js) | `14.0.1` | `16.2.7` |\n| [uuid](https://github.com/uuidjs/uuid) | `9.0.1` | `14.0.0` |\n| [postcss](https://github.com/postcss/postcss) | `8.4.31` | `8.5.10` |\n| [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.2.9` | `3.4.2` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.2.0` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.3` | `2.1.4` |\n| [ws](https://github.com/websockets/ws) | `8.14.2` | `8.21.0` |\n\n\nUpdates `aws-sdk` from 2.1487.0 to 2.1693.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js/releases\"\u003eaws-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.1693.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1692.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1691.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1690.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1689.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1688.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1687.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1686.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1685.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1684.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1683.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1682.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1681.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1680.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1679.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1678.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1677.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/9d3c66eca8c4416a9d347d0703f27b65775d65ef\"\u003e\u003ccode\u003e9d3c66e\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1693.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c039567cee58b50a44f53f30318fa21f36c42ecc\"\u003e\u003ccode\u003ec039567\u003c/code\u003e\u003c/a\u003e test(client-elastictranscoder): remove feature test (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4711\"\u003e#4711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/f5b1a6f0aebb477204d979091d654649f29ad9ce\"\u003e\u003ccode\u003ef5b1a6f\u003c/code\u003e\u003c/a\u003e docs: end-of-support (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4706\"\u003e#4706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/657d6feb00447c8be1d65158a0ecc0585b70ed60\"\u003e\u003ccode\u003e657d6fe\u003c/code\u003e\u003c/a\u003e chore: use ssh private key for git sync (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4705\"\u003e#4705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c12585baeb9197158cd50975af66856617732aea\"\u003e\u003ccode\u003ec12585b\u003c/code\u003e\u003c/a\u003e chore: remove regression label management (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4699\"\u003e#4699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/966fa6c316dbb11ca9277564ff7120e6b16467f4\"\u003e\u003ccode\u003e966fa6c\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1692.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/5d0e38adbbc1a3fd6e6bf7c48cd7e209e9eb0b5f\"\u003e\u003ccode\u003e5d0e38a\u003c/code\u003e\u003c/a\u003e Delete EC2 launch configuration e2e tests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4685\"\u003e#4685\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/b9ce3461a495dcf4f4a0be133e103d98130847a6\"\u003e\u003ccode\u003eb9ce346\u003c/code\u003e\u003c/a\u003e chore: fix issue config (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4683\"\u003e#4683\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c06668172b233e0b2ded1afc48f0a11f6b79735c\"\u003e\u003ccode\u003ec066681\u003c/code\u003e\u003c/a\u003e Update issue template config and disable docs requests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4682\"\u003e#4682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/163a7cfc86308e0b54245c04fb7b317bcd3893b0\"\u003e\u003ccode\u003e163a7cf\u003c/code\u003e\u003c/a\u003e Modified bug issue template to add checkbox to report potential regression. (...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-js/compare/v2.1487.0...v2.1693.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 3.5.1 to 3.5.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-formidable/formidable/releases\"\u003eformidable's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eswitch to pnpm, minimize deps \u0026amp; devDeps, fix deps through pnpm audit\u003c/li\u003e\n\u003cli\u003eremove \u003ccode\u003eos.machine\u003c/code\u003e, fix \u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/994\"\u003e#994\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/995\"\u003e#995\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-formidable/formidable/compare/v3.5.3...v3.5.4\"\u003ehttps://github.com/node-formidable/formidable/compare/v3.5.3...v3.5.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix existing test failure by \u003ca href=\"https://github.com/ryhmrt\"\u003e\u003ccode\u003e@​ryhmrt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/990\"\u003enode-formidable/formidable#990\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate Ryan Dahl x account link by \u003ca href=\"https://github.com/moetezch\"\u003e\u003ccode\u003e@​moetezch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/989\"\u003enode-formidable/formidable#989\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate failing tests\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate CI/CD workflows and actions;\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate CodeQL github action for security analysis\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate readme, links and badges\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate to use cuid2 (battle-tested \u003ccode\u003e@paralleldrive/cuid2\u003c/code\u003e package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ryhmrt\"\u003e\u003ccode\u003e@​ryhmrt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/990\"\u003enode-formidable/formidable#990\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moetezch\"\u003e\u003ccode\u003e@​moetezch\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/989\"\u003enode-formidable/formidable#989\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3\"\u003ehttps://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.2\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\"\u003eformidable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e3.5.4\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix the \u003ccode\u003eos.machine\u003c/code\u003e breaking some dependents, fix \u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/994\"\u003e#994\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd Node 16, 18, 20, 22 to CI/CD\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.3\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esecurity report by ZAST.AI help for some vulnerabilities addressing (primarily the random names generation)\u003c/li\u003e\n\u003cli\u003eupdate failing tests\u003c/li\u003e\n\u003cli\u003eupdate CI/CD workflows and actions;\u003c/li\u003e\n\u003cli\u003eupdate CodeQL github action for security analysis\u003c/li\u003e\n\u003cli\u003eupdate readme, links and badges\u003c/li\u003e\n\u003cli\u003eupdate to use cuid2 (battle-tested \u003ccode\u003e@paralleldrive/cuid2\u003c/code\u003e package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.2\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/982\"\u003e#982\u003c/a\u003e) make it easier to import hexoid with webpack\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/d0fbec13edc8add54a1afb9ce1a8d3db803f8d47\"\u003e\u003ccode\u003ed0fbec1\u003c/code\u003e\u003c/a\u003e chore: release v3.5.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/b2483ba444464f57ac6052891a124afdea63b273\"\u003e\u003ccode\u003eb2483ba\u003c/code\u003e\u003c/a\u003e fix: remove os.machine, fix \u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/994\"\u003e#994\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/995\"\u003e#995\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/76d54b2e65e515e28033a6ffe6cac765031269a2\"\u003e\u003ccode\u003e76d54b2\u003c/code\u003e\u003c/a\u003e chore: switch to pnpm, minimize deps \u0026amp; devDeps, fix deps through pnpm audit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/0bf31f65877fa1dce4c163c0f3a0e588afbbe45b\"\u003e\u003ccode\u003e0bf31f6\u003c/code\u003e\u003c/a\u003e chore: release v3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/022c2c5577dfe14d2947f10909d81b03b6070bf5\"\u003e\u003ccode\u003e022c2c5\u003c/code\u003e\u003c/a\u003e fix: switch hexoid - cuid2 -\u0026gt; better, safer, more random; this is addressing ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/3a126b7a3c8bf8ee2f6bae0624c556a7c709ed35\"\u003e\u003ccode\u003e3a126b7\u003c/code\u003e\u003c/a\u003e chore: bruh\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/4d176d3dd57f5361269ff97e0afbbf843807a6d1\"\u003e\u003ccode\u003e4d176d3\u003c/code\u003e\u003c/a\u003e chore: build badges\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/a91cfea98f3173d71732a68b0430c7aa8582058b\"\u003e\u003ccode\u003ea91cfea\u003c/code\u003e\u003c/a\u003e chore: update readme badges\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/b1c318640699b551bbf476110c18fa19d13efce4\"\u003e\u003ccode\u003eb1c3186\u003c/code\u003e\u003c/a\u003e chore: update codeql actions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/9d6c76a253ce45680a6c834f72d8b423cc4f68c0\"\u003e\u003ccode\u003e9d6c76a\u003c/code\u003e\u003c/a\u003e chore: updare readme\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-formidable/formidable/compare/v3.5.1...v3.5.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jspdf` from 2.5.1 to 4.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/parallax/jsPDF/releases\"\u003ejspdf's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes two security issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5\"\u003eHTML Injection in output methods\u003c/a\u003e vulnerability.\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-7x6v-j9x4-qf24\"\u003ePDF Object Injection via free text annotation color\u003c/a\u003e vulnerability.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/parallax/jsPDF/compare/v4.2.0...v4.2.1\"\u003ehttps://github.com/parallax/jsPDF/compare/v4.2.0...v4.2.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cp\u003eThis release fixes three security issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-p5xg-68wr-hm3m\"\u003ePDF Injection in AcroForm module allows Arbitrary JavaScript Execution (RadioButton children)\u003c/a\u003e vulnerability.\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-67pg-wm7f-q7fj\"\u003eClient-Side/Server-Side Denial of Service via Malicious GIF Dimensions\u003c/a\u003e vulnerability.\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-9vjf-qc39-jprp\"\u003ePDF Object Injection via Unsanitized Input in addJS Method\u003c/a\u003e vulnerability.\u003c/li\u003e\n\u003cli\u003eAdd \u0026quot;default\u0026quot; property to export section in package.json by \u003ca href=\"https://github.com/stefan-schweiger\"\u003e\u003ccode\u003e@​stefan-schweiger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3953\"\u003eparallax/jsPDF#3953\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stefan-schweiger\"\u003e\u003ccode\u003e@​stefan-schweiger\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3953\"\u003eparallax/jsPDF#3953\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/parallax/jsPDF/compare/v4.1.0...v4.2.0\"\u003ehttps://github.com/parallax/jsPDF/compare/v4.1.0...v4.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cp\u003eThis release fixes several security issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade optional dompurify dependency to 3.3.1 in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3948\"\u003eparallax/jsPDF#3948\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-pqxr-3g65-p328\"\u003ePDF Injection in AcroForm module allows Arbitrary JavaScript Execution\u003c/a\u003e vulnerability\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-vm32-vv63-w422\"\u003eStored XMP Metadata Injection (Spoofing \u0026amp; Integrity Violation)\u003c/a\u003e vulnerability\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-cjw8-79x6-5cj4\"\u003eShared State Race Condition in addJS Method\u003c/a\u003e vulnerability\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-95fx-jjr5-f39c\"\u003eDenial of Service (DoS) via Unvalidated BMP Dimensions in BMPDecoder\u003c/a\u003e vulnerability\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/parallax/jsPDF/compare/v4.0.0...v4.1.0\"\u003ehttps://github.com/parallax/jsPDF/compare/v4.0.0...v4.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cp\u003eThis release fixes a critical path traversal/local file inclusion \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-f8cm-6447-x5h2\"\u003esecurity vulnerability\u003c/a\u003e in the jsPDF Node.js build. File system access is now restricted by default and can be enabled by either using node's \u003ca href=\"https://nodejs.org/api/permissions.html\"\u003e\u003ccode\u003e--permission\u003c/code\u003e\u003c/a\u003e flag or the new \u003ca href=\"https://raw.githack.com/MrRio/jsPDF/master/docs/module-fileloading.html#~allowFsRead\"\u003e\u003ccode\u003ejsPDF.allowFsRead\u003c/code\u003e\u003c/a\u003e property.\u003c/p\u003e\n\u003cp\u003eThere are no other breaking changes.\u003c/p\u003e\n\u003ch2\u003ev3.0.4\u003c/h2\u003e\n\u003cp\u003eThis release includes a bunch of bugfixes. Thanks to all contributors!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Snyk] Upgrade \u003ccode\u003e@​babel/runtime\u003c/code\u003e from 7.28.3 to 7.28.4 by \u003ca href=\"https://github.com/MrRio\"\u003e\u003ccode\u003e@​MrRio\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3895\"\u003eparallax/jsPDF#3895\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: cell function now properly accepts align parameter by \u003ca href=\"https://github.com/vishal-rathod-07\"\u003e\u003ccode\u003e@​vishal-rathod-07\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3896\"\u003eparallax/jsPDF#3896\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove duplicated function \u0026quot;ga\u0026quot; from WebPDecoder.js by \u003ca href=\"https://github.com/jvdp\"\u003e\u003ccode\u003e@​jvdp\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3902\"\u003eparallax/jsPDF#3902\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix font state management issue \u003ca href=\"https://redirect.github.com/parallax/jsPDF/issues/3890\"\u003e#3890\u003c/a\u003e by \u003ca href=\"https://github.com/srikanth-s2003\"\u003e\u003ccode\u003e@​srikanth-s2003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3891\"\u003eparallax/jsPDF#3891\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix pages property to always return current array reference ( \u003ca href=\"https://redirect.github.com/parallax/jsPDF/issues/3898\"\u003e#3898\u003c/a\u003e ) by \u003ca href=\"https://github.com/Opineppes\"\u003e\u003ccode\u003e@​Opineppes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3899\"\u003eparallax/jsPDF#3899\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix jsPDF + Vite compatibility issue \u003ca href=\"https://redirect.github.com/parallax/jsPDF/issues/3851\"\u003e#3851\u003c/a\u003e by \u003ca href=\"https://github.com/tishajain25\"\u003e\u003ccode\u003e@​tishajain25\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3903\"\u003eparallax/jsPDF#3903\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/4562ce8aa35bd5ecd98cd5e262e3da2af96476f6\"\u003e\u003ccode\u003e4562ce8\u003c/code\u003e\u003c/a\u003e 4.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/4155c4819d5eca284168e51e0e1e81126b4f14b8\"\u003e\u003ccode\u003e4155c48\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7\"\u003e\u003ccode\u003e87a40bb\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/b1607a9391d4cd65ea7ade25998aea8345ae1be3\"\u003e\u003ccode\u003eb1607a9\u003c/code\u003e\u003c/a\u003e Bump minimatch from 3.1.2 to 3.1.5 (\u003ca href=\"https://redirect.github.com/parallax/jsPDF/issues/3961\"\u003e#3961\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/42ac89097de83bcedd10870af47a0a25c11ca3d1\"\u003e\u003ccode\u003e42ac890\u003c/code\u003e\u003c/a\u003e Bump rollup from 2.79.2 to 2.80.0 (\u003ca href=\"https://redirect.github.com/parallax/jsPDF/issues/3960\"\u003e#3960\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/7af912cadaf0f9a2ad28afe7af53033a2c61de64\"\u003e\u003ccode\u003e7af912c\u003c/code\u003e\u003c/a\u003e 4.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/56b46d45b052346f5995b005a34af5dcdddd5437\"\u003e\u003ccode\u003e56b46d4\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/2e5e156e284d92c7d134bce97e6418756941d5e6\"\u003e\u003ccode\u003e2e5e156\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/71ad2dbfa6c7c189ab42b855b782620fa8a38375\"\u003e\u003ccode\u003e71ad2db\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/885a7778070d500887c9a5d2b02b55460009a9d0\"\u003e\u003ccode\u003e885a777\u003c/code\u003e\u003c/a\u003e fix: upgrade \u003ccode\u003e@​babel/runtime\u003c/code\u003e from 7.28.4 to 7.28.6 (\u003ca href=\"https://redirect.github.com/parallax/jsPDF/issues/3954\"\u003e#3954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/parallax/jsPDF/compare/v2.5.1...v4.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `next` from 14.0.1 to 16.2.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vercel/next.js/releases\"\u003enext's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev16.2.7\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nThis release is backporting bug fixes. It does \u003cstrong\u003enot\u003c/strong\u003e include all pending features/changes on canary.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eCore Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackport documentation fixes for v16.2 (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93804\"\u003e#93804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Patch \u003ccode\u003eplaywright-core\u003c/code\u003e to resolve \u003ccode\u003e_finishedPromise\u003c/code\u003e on \u003ccode\u003erequestFailed\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93920\"\u003e#93920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Fix dev mode hydration failure when page is served from HTTP cache (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93492\"\u003e#93492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Fix catch-all \u003ccode\u003erouter.query\u003c/code\u003e corruption with \u003ccode\u003ebasePath\u003c/code\u003e + \u003ccode\u003erewrites\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93917\"\u003e#93917\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Encode non-ASCII characters in cache tags at construction (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93918\"\u003e#93918\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Fix server action forwarding loop with middleware rewrites (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93919\"\u003e#93919\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Turbopack: switch from base40 to base38 hash encoding (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93932\"\u003e#93932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[ci] Disable hanging node 24 typescript tests on 16.2 backport branch (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94164\"\u003e#94164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Fix \u0026quot;type: module\u0026quot; in project dir when using standalone or adapters (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94050\"\u003e#94050\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Propagate adapter preferred regions (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94200\"\u003e#94200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[16.2.x] Don't drop \u003ccode\u003eFormData\u003c/code\u003e entries (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94240\"\u003e#94240\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] feat(turbopack): add LocalPathOrProjectPath PostCSS config resolution (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94284\"\u003e#94284\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCredits\u003c/h3\u003e\n\u003cp\u003eHuge thanks to \u003ca href=\"https://github.com/eps1lon\"\u003e\u003ccode\u003e@​eps1lon\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/icyJoseph\"\u003e\u003ccode\u003e@​icyJoseph\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/unstubbable\"\u003e\u003ccode\u003e@​unstubbable\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/mischnic\"\u003e\u003ccode\u003e@​mischnic\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/bgw\"\u003e\u003ccode\u003e@​bgw\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/timneutkens\"\u003e\u003ccode\u003e@​timneutkens\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/lukesandberg\"\u003e\u003ccode\u003e@​lukesandberg\u003c/code\u003e\u003c/a\u003e for helping!\u003c/p\u003e\n\u003ch2\u003ev16.2.6\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nThis release contains security fixes and backported bug fixes. It does \u003cstrong\u003enot\u003c/strong\u003e include all pending features/changes on canary.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eSecurity Fixes\u003c/h3\u003e\n\u003cp\u003eThe following advisories have been addressed:\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eHigh:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-8h8q-6873-q5fj\"\u003eGHSA-8h8q-6873-q5fj: Denial of Service with Server Components\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-267c-6grr-h53f\"\u003eGHSA-267c-6grr-h53f: Middleware / Proxy bypass in App Router applications via segment-prefetch routes\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-26hh-7cqf-hhc6\"\u003eGHSA-26hh-7cqf-hhc6: Middleware / Proxy bypass in App Router applications via segment-prefetch routes - \u003cstrong\u003eIncomplete Fix Follow-Up\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-mg66-mrh9-m8jx\"\u003eGHSA-mg66-mrh9-m8jx: Denial of Service via connection exhaustion in applications using Cache Components\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-492v-c6pp-mqqv\"\u003eGHSA-492v-c6pp-mqqv: Middleware / Proxy bypass through dynamic route parameter injection\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-c4j6-fc7j-m34r\"\u003eGHSA-c4j6-fc7j-m34r: Server-side request forgery in applications using WebSocket upgrades\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-36qx-fr4f-26g5\"\u003eGHSA-36qx-fr4f-26g5: Middleware / Proxy bypass in Pages Router applications using i18n\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eModerate:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-ffhc-5mcf-pf4q\"\u003eGHSA-ffhc-5mcf-pf4q: Cross-site scripting in App Router applications using CSP nonces\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-gx5p-jg67-6x7h\"\u003eGHSA-gx5p-jg67-6x7h: Cross-site scripting in beforeInteractive scripts with untrusted input\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-h64f-5h5j-jqjh\"\u003eGHSA-h64f-5h5j-jqjh: Denial of Service in the Image Optimization API\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-wfc6-r584-vfw7\"\u003eGHSA-wfc6-r584-vfw7: Cache poisoning in React Server Component responses\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eLow:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-vfv6-92ff-j949\"\u003eGHSA-vfv6-92ff-j949: Cache poisoning via collisions in React Server Component cache-busting\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-3g8h-86w9-wvmq\"\u003eGHSA-3g8h-86w9-wvmq: Middleware / Proxy redirects can be cache-poisoned\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/9bd3c26a733901956549889f28c0047553bba622\"\u003e\u003ccode\u003e9bd3c26\u003c/code\u003e\u003c/a\u003e v16.2.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/c63224f3d8e8dd0a4ef8635916f92954421e5f1e\"\u003e\u003ccode\u003ec63224f\u003c/code\u003e\u003c/a\u003e [backport] feat(turbopack): add LocalPathOrProjectPath PostCSS config resolut...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/63115c79877c90df4371c2425f3fc5d3a55ac58d\"\u003e\u003ccode\u003e63115c7\u003c/code\u003e\u003c/a\u003e [16.2.x] Don't drop \u003ccode\u003eFormData\u003c/code\u003e entries (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94240\"\u003e#94240\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/aef22fdc828226227f618bb982a222e1256ba6f2\"\u003e\u003ccode\u003eaef22fd\u003c/code\u003e\u003c/a\u003e [backport] Propagate adapter preferred regions (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94200\"\u003e#94200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/f126e72271a808a12adb1f97feca6a900bece7ba\"\u003e\u003ccode\u003ef126e72\u003c/code\u003e\u003c/a\u003e [backport] Fix \u0026quot;type: module\u0026quot; in project dir when using standalone or adapter...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/bda3e2aabe5ba18b6e8ec656bcdaf549816469c3\"\u003e\u003ccode\u003ebda3e2a\u003c/code\u003e\u003c/a\u003e [ci] Disable hanging node 24 typescript tests on 16.2 backport branch (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94164\"\u003e#94164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/7e16e07c0203f8a940899e656526f287278c57e6\"\u003e\u003ccode\u003e7e16e07\u003c/code\u003e\u003c/a\u003e [backport] Turbopack: switch from base40 to base38 hash encoding (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93932\"\u003e#93932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/6139f4b885b329abdd5821199cc19cc89f3eaf33\"\u003e\u003ccode\u003e6139f4b\u003c/code\u003e\u003c/a\u003e [backport] Fix server action forwarding loop with middleware rewrites (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93919\"\u003e#93919\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/c021d10fe9540aaa7aff7b7227c7d73e60a0e5b9\"\u003e\u003ccode\u003ec021d10\u003c/code\u003e\u003c/a\u003e [backport] Encode non-ASCII characters in cache tags at construction (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93918\"\u003e#93918\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/9184ddb1aeed5c5db0f02c7a2d6d298071c2f44f\"\u003e\u003ccode\u003e9184ddb\u003c/code\u003e\u003c/a\u003e [backport] Fix catch-all \u003ccode\u003erouter.query\u003c/code\u003e corruption with \u003ccode\u003ebasePath\u003c/code\u003e + `rewrite...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vercel/next.js/compare/v14.0.1...v16.2.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for next since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uuid` from 9.0.1 to 14.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003edc4ddb8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003ef2c235f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003effa3138\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.1...v13.0.2\"\u003e13.0.2\u003c/a\u003e (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ererelease to fix provenance. (\u003ca href=\"https://github.com/uuidjs/uuid/commit/49ccb35f78c0c4ce1409dd2f1d89f83caadba10b\"\u003e49ccb35\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v13.0.1\"\u003e13.0.1\u003c/a\u003e (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/9d27ddf7046ce496ef39569ff84d948eeff9cb2a\"\u003e9d27ddf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v12.0.1\"\u003e12.0.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq\"\u003eGHSA-w5hq-g745-h8pq\u003c/a\u003e: \u003ccode\u003ev3()\u003c/code\u003e, \u003ccode\u003ev5()\u003c/code\u003e, and \u003ccode\u003ev6()\u003c/code\u003e did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid \u003ccode\u003eoffset\u003c/code\u003e was provided. A \u003ccode\u003eRangeError\u003c/code\u003e is now thrown if \u003ccode\u003eoffset \u0026lt; 0\u003c/code\u003e or \u003ccode\u003eoffset + 16 \u0026gt; buf.length\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecrypto\u003c/code\u003e is now expected to be globally defined (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd node@24 to ci matrix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/879\"\u003e#879\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/42b6178aa21a593257f0a72abacd220f0b7b8a92\"\u003e42b6178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f38cf10366ab074f9328ae2021eea04d5f2e530\"\u003e0f38cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ae786e27265f50bcf7cead196c29f1869297c42f\"\u003eae786e2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c7ee40598ed78584d81ab78dffded9fe5ff20b01\"\u003ec7ee405\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove v4() performance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/894\"\u003e#894\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/5fd974c12718c8848035650b69b8948f12ace197\"\u003e5fd974c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestore node: prefix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/889\"\u003e#889\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e1f42a354593093ba0479f0b4047dae82d28c507\"\u003ee1f42a3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7c1ea087a8149b57380fc8bb7f68c3a215cb6e4b\"\u003e\u003ccode\u003e7c1ea08\u003c/code\u003e\u003c/a\u003e chore(main): release 14.0.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34\"\u003e\u003ccode\u003e3d2c5b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003e\u003ccode\u003ef2c235f\u003c/code\u003e\u003c/a\u003e fix!: expect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/529ef0899f5dd503d2ee90d690585d63d78bc212\"\u003e\u003ccode\u003e529ef08\u003c/code\u003e\u003c/a\u003e chore: upgrade TypeScript and fixup types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/927\"\u003e#927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/086fd7976f11433edf9ac80be876b3ad243fe087\"\u003e\u003ccode\u003e086fd79\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003e\u003ccode\u003edc4ddb8\u003c/code\u003e\u003c/a\u003e feat!: drop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f1f9c9c9cedbae5a1d363d5406c5dfbabe81404\"\u003e\u003ccode\u003e0f1f9c9\u003c/code\u003e\u003c/a\u003e chore: switch to Biome for parsing and linting (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2879e64bf125add903c1eff6e0860542c605013\"\u003e\u003ccode\u003ee2879e6\u003c/code\u003e\u003c/a\u003e chore: use maintained version of npm-run-all (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/930\"\u003e#930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003e\u003ccode\u003effa3138\u003c/code\u003e\u003c/a\u003e fix: Use GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0423d49df2dc8efc300c804731d25f4d7e0fccc4\"\u003e\u003ccode\u003e0423d49\u003c/code\u003e\u003c/a\u003e docs: remove obsolete v1 option notes (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v9.0.1...v14.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postcss` from 8.4.31 to 8.5.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/releases\"\u003epostcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003ePostCSS 8.5 brought API to work better with non-CSS sources like HTML, Vue.js/Svelte sources or CSS-in-JS.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e during \u003ca href=\"https://redirect.github.com/postcss/postcss/issues/1995\"\u003ehis work\u003c/a\u003e on \u003ca href=\"https://stylelint.io\"\u003eStylelint\u003c/a\u003e added \u003ccode\u003eInput#document\u003c/code\u003e in additional to \u003ccode\u003eInput#css\u003c/code\u003e.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eroot.source.input.document //=\u0026gt; \u0026quot;\u0026lt;p\u0026gt;Hello\u0026lt;/p\u0026gt;\r\n                           //    \u0026lt;style\u0026gt;\r\n                           //    p {\r\n                           //      color: green;\r\n                           //    }\r\n                           //    \u0026lt;/style\u0026gt;\u0026quot;\r\nroot.source.input.css      //=\u0026gt; \u0026quot;p {\r\n                           //      color: green;\r\n                           //    }\u0026quot;\r\n\u003cp\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/blob/main/CHANGELOG.md\"\u003epostcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eInput#document\u003c/code\u003e for sources like CSS-in-JS or HTML (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.4.49\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed custom syntax without \u003ccode\u003esource.offset\u003c/code\u003e (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/33b9790263dc1562a46ce45d9532bd63e95b7986\"\u003e\u003ccode\u003e33b9790\u003c/code\u003e\u003c/a\u003e Release 8.5.10 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/536c79e4b01e58a3a56b09c3c0cf2323f4b9a28b\"\u003e\u003ccode\u003e536c79e\u003c/code\u003e\u003c/a\u003e Escape \u0026lt;/style\u0026gt; in CSS output (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2074\"\u003e#2074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/afa96b2a139ce625c4d27973313479c7c85f39d4\"\u003e\u003ccode\u003eafa96b2\u003c/code\u003e\u003c/a\u003e Update dependencies (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2073\"\u003e#2073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/effe88bb87cabdc1876e02adbdd30f392f19f40d\"\u003e\u003ccode\u003eeffe88b\u003c/code\u003e\u003c/a\u003e Typo (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/3ee79a2c4a11e41d52db50b444eebe38299495ad\"\u003e\u003ccode\u003e3ee79a2\u003c/code\u003e\u003c/a\u003e Thread model (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2071\"\u003e#2071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/2e0683daca4dc2919211b03774f6b2d137136c01\"\u003e\u003ccode\u003e2e0683d\u003c/code\u003e\u003c/a\u003e Create incident response docs (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/fe88ac29c06b7b218be32994cdc6ca1525bdf2c9\"\u003e\u003ccode\u003efe88ac2\u003c/code\u003e\u003c/a\u003e Release 8.5.9 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/c551632496b87ab3f1965bfda5dc386b6c71963e\"\u003e\u003ccode\u003ec551632\u003c/code\u003e\u003c/a\u003e Avoid RegExp when we can use simple JS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/89a6b744060eb8dee743351c785a9fbe37d4525a\"\u003e\u003ccode\u003e89a6b74\u003c/code\u003e\u003c/a\u003e Move SECURITY.txt for docs folder to keep GitHub page cleaner\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/6ceb8a46af9f9de821faee98f861bdf84617347b\"\u003e\u003ccode\u003e6ceb8a4\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/postcss/postcss/compare/8.4.31...8.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/runtime` from 7.23.2 to 7.29.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e@​babel/runtime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.7 (2026-05-25)\u003c/h2\u003e\n\u003cp\u003eRe-release all packages with npm provenance attestations\u003c/p\u003e\n\u003ch2\u003ev7.29.6 (2026-05-25)\u003c/h2\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/18014\"\u003e#18014\u003c/a\u003e Catchup source map position in preserveFormat (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/18001\"\u003e#18001\u003c/a\u003e [7.x packport]Improve input source map handling (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-generator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17998\"\u003e#17998\u003c/a\u003e Preserve original identifier names from input sourcemaps (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime/issues/17992\"\u003e#17992\u003c/a\u003e) (\u003ca href=\"https://github.com/Andarist\"\u003e\u003ccode\u003e@​Andarist\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 3\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMateusz Burzyński (\u003ca href=\"https://github.com/Andarist\"\u003e\u003ccode\u003e@​Andarist\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.5 (2026-05-05)\u003c/h2\u003e\n\u003ch4\u003e:house:  Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-preset-env\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003e@babel/*\u003c/code\u003e dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.4 (2026-05-05)\u003c/h2\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-modules-systemjs\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17974\"\u003e#17974\u003c/a\u003e [7.x backport]fix(systemjs): improve module string name support (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 1\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.3 (2026-04-30)\u003c/h2\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17923\"\u003e#17923\u003c/a\u003e Support flow extends bound (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-create-class-features-plugin\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17931\"\u003e#17931\u003c/a\u003e fix(decorators): replace super within all removed static elements (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-register\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17915\"\u003e#17915\u003c/a\u003e Fix thread synchronization issues in \u003ccode\u003e@babel/register\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-compat-data\u003c/code\u003e, \u003ccode\u003ebabel-plugin-bugfix-safari-rest-destructuring-rhs-array\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17788\"\u003e#17788\u003c/a\u003e Add bugfix plugin for Safari array rest destructuring bug (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/4fba7541180bf5f58256d8e358b544e3831ad090\"\u003e\u003ccode\u003e4fba754\u003c/code\u003e\u003c/a\u003e v7.29.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/37d5595fca9f188f0534458180611f2e776acd31\"\u003e\u003ccode\u003e37d5595\u003c/code\u003e\u003c/a\u003e v7.29.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f68ac511f091f6d1f698e8ce59cd668d3bfc6102\"\u003e\u003ccode\u003ef68ac51\u003c/code\u003e\u003c/a\u003e chore: Avoid CITGM errors (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime/issues/17382\"\u003e#17382\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/7d069309fdfcedda2928a043f6f7c98135c1242a\"\u003e\u003ccode\u003e7d06930\u003c/code\u003e\u003c/a\u003e v7.27.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/5b9468d9bf1ab4f427241673e9f03593da115a69\"\u003e\u003ccode\u003e5b9468d\u003c/code\u003e\u003c/a\u003e Reduce \u003ccode\u003eregenerator\u003c/code\u003e size more (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime/issues/17287\"\u003e#17287\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.7/packages/babel-runtime\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​babel/runtime\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `braces` from 3.0.2 to 3.0.3\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/74b2db2938fad48a2ea54a9c8bf27a37a62c350d\"\u003e\u003ccode\u003e74b2db2\u003c/code\u003e\u003c/a\u003e 3.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/88f1429a0f47e1dd3813de35211fc97ffda27f9e\"\u003e\u003ccode\u003e88f1429\u003c/code\u003e\u003c/a\u003e update eslint. lint, fix unit tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/415d660c3002d1ab7e63dbf490c9851da80596ff\"\u003e\u003ccode\u003e415d660\u003c/code\u003e\u003c/a\u003e Snyk js braces 6838727 (\u003ca href=\"https://redirect.github.com/micromatch/braces/issues/40\"\u003e#40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/190510f79db1adf21d92798b0bb6fccc1f72c9d6\"\u003e\u003ccode\u003e190510f\u003c/code\u003e\u003c/a\u003e fix tests, skip 1 test in test/braces.expand\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/716eb9f12d820b145a831ad678618731927e8856\"\u003e\u003ccode\u003e716eb9f\u003c/code\u003e\u003c/a\u003e readme bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/a5851e57f45c3431a94d83fc565754bc10f5bbc3\"\u003e\u003ccode\u003ea5851e5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/braces/issues/37\"\u003e#37\u003c/a\u003e from coderaiser/fix/vulnerability\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/2092bd1fb108d2c59bd62e243b70ad98db961538\"\u003e\u003ccode\u003e2092bd1\u003c/code\u003e\u003c/a\u003e feature: braces: add maxSymbols (\u003ca href=\"https://github.com/micromatch/braces/issues/\"\u003ehttps://github.com/micromatch/braces/issues/\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/9f5b4cf47329351bcb64287223ffb6ecc9a5e6d3\"\u003e\u003ccode\u003e9f5b4cf\u003c/code\u003e\u003c/a\u003e fix: vulnerability (\u003ca href=\"https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727\"\u003ehttps://security.snyk.io/vuln/SNYK-JS-BRACES-6838727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/98414f9f1fabe021736e26836d8306d5de747e0d\"\u003e\u003ccode\u003e98414f9\u003c/code\u003e\u003c/a\u003e remove funding file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/665ab5d561c017a38ba7aafd92cc6655b91d8c14\"\u003e\u003ccode\u003e665ab5d\u003c/code\u003e\u003c/a\u003e update keepEscaping doc (\u003ca href=\"https://redirect.github.com/micromatch/braces/issues/27\"\u003e#27\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/micromatch/braces/compare/3.0.2...3.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `canvg` from 3.0.10 to 3.0.11\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/canvg/canvg/releases\"\u003ecanvg's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.11\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix prototype pollution vulneralbility\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/canvg/canvg/blob/v3.0.11/CHANGELOG.md\"\u003ecanvg's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e3.0.11 (2025-03-13)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix prototype pollution vulneralbility\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.9] - 2021-10-04\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1480\"\u003e#1480\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1484\"\u003e#1484\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.8] - 2021-07-31\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1460\"\u003e#1460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/108\"\u003e#108\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1439\"\u003e#1439\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1364\"\u003e#1364\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.7] - 2020-10-17\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1133\"\u003e#1133\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1001\"\u003e#1001\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/977\"\u003e#977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1196\"\u003e#1196\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1111\"\u003e#1111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1161\"\u003e#1161\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.6] - 2020-03-25\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/747\"\u003e#747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/897\"\u003e#897\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/908\"\u003e#908\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/941\"\u003e#941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/944\"\u003e#944\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/945\"\u003e#945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/946\"\u003e#946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.1] - 2019-12-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/816\"\u003e#816\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0] - 2019-10-23\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eOffscreenCanvas\u003c/code\u003e support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eJavaScript -\u0026gt; TypeScript.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/782\"\u003e#782\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/canvg/canvg/commits/v3.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dompurify` from 2.4.7 to 3.4.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cure53/DOMPurify/releases\"\u003edompurify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDOMPurify 3.4.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCleaned up the repository root, renamed some and removed unneeded files\u003c/li\u003e\n\u003cli\u003eFixed an issue with handling of Trusted Types policies, thanks \u003ca href=\"https://github.com/fulstadev\"\u003e\u003ccode\u003e@​fulstadev\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the node iterator for better template scrubbing, thanks \u003ca href=\"https://github.com/IamLeandrooooo\"\u003e\u003ccode\u003e@​IamLeandrooooo\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncluded formerly missing LICENSE-MPL in published npm package, thanks \u003ca href=\"https://github.com/asamuzaK\"\u003e\u003ccode\u003e@​asamuzaK\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHardened the handling of Shadow Roots when using \u003ccode\u003eIN_PLACE\u003c/code\u003e, thanks \u003ca href=\"https://github.com/GameZoneHacker\"\u003e\u003ccode\u003e@​GameZoneHacker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved a problem leading to permanent hook pollution, thanks \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactored the test suite and expanded test coverage significantly\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed several issues with DOM Clobbering in \u003ccode\u003eIN_PLACE\u003c/code\u003e mode, thanks \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/Bankde\"\u003e\u003ccode\u003e@​Bankde\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHardened the checks for cross-realm \u003ccode\u003eIN_PLACE\u003c/code\u003e and Shadow DOM sanitization, thanks \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/Bankde\"\u003e\u003ccode\u003e@​Bankde\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded more test coverage for \u003ccode\u003eIN_PLACE\u003c/code\u003e and general DOM Clobbering attacks\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a bypass caused by the new HTML element \u003ccode\u003eselectedcontent\u003c/code\u003e added in 3.4.4, thanks \u003ca href=\"https://github.com/KabirAcharya\"\u003e\u003ccode\u003e@​KabirAcharya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNote that this is a security release for an issue introduced in 3.4.4 and should be upgraded to immediately.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eDOMPurify 3.4.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded the \u003ccode\u003eselectedcontent\u003c/code\u003e element to default allow-list, thanks \u003ca href=\"https://github.com/lukewarlow\"\u003e\u003ccode\u003e@​lukewarlow\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded the \u003ccode\u003ecommand\u003c/code\u003e and \u003ccode\u003ecommandfor\u003c/code\u003e attributes to default allowed-list, thanks \u003ca href=\"https://github.com/lukewarlow\"\u003e\u003ccode\u003e@​lukewarlow\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded better template scrubbing for \u003ccode\u003eIN_PLACE\u003c/code\u003e operations, thanks \u003ca href=\"https://github.com/DEMON1A\"\u003e\u003ccode\u003e@​DEMON1A\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded stronger checks for cross-realm windows, thanks \u003ca href=\"https://github.com/DEMON1A\"\u003e\u003ccode\u003e@​DEMON1A\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/fg0x0\"\u003e\u003ccode\u003e@​fg0x0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated demo website and made sure it uses the latest from main\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, dependabot, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e🚨 \u003cstrong\u003eThis release had been flagged as deprecated, please use DOMPurify 3.4.5 instead\u003c/strong\u003e 🚨\u003c/p\u003e\n\u003ch2\u003eDOMPurify 3.4.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with handling of nested Shadow DOM trees, thanks \u003ca href=\"https://github.com/fishjojo1\"\u003e\u003ccode\u003e@​fishjojo1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the template regexes to be more robust against ReDoS attacks, thanks \u003ca href=\"https://github.com/aleung27\"\u003e\u003ccode\u003e@​aleung27\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated the node iteration code to catch more Shadow DOM related issues\u003c/li\u003e\n\u003cli\u003eUpdated Playwright and added Node 26 to test matrix\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, release signing, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with URI validation on attributes allowed via \u003ccode\u003eADD_ATTR\u003c/code\u003e callback, thanks \u003ca href=\"https://github.com/nelstrom\"\u003e\u003ccode\u003e@​nelstrom\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with source maps referring to non-existing files, thanks \u003ca href=\"https://github.com/cmdcolin\"\u003e\u003ccode\u003e@​cmdcolin\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, release signing, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with on-handler stripping for HTML-spec-reserved custom element names (\u003ccode\u003efont-face\u003c/code\u003e, \u003ccode\u003ecolor-profile\u003c/code\u003e, \u003ccode\u003emissing-glyph\u003c/code\u003e, \u003ccode\u003efont-face-src\u003c/code\u003e, \u003ccode\u003efont-face-uri\u003c/code\u003e, \u003ccode\u003efont-face-format\u003c/code\u003e, \u003ccode\u003efont-face-name\u003c/code\u003e) under permissive \u003ccode\u003eCUSTOM_ELEMENT_HANDLING\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/bcdd8285412dc9c4c149652aed2d712e790d6ccf\"\u003e\u003ccode\u003ebcdd828\u003c/code\u003e\u003c/a\u003e release: 3.4.8 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1439\"\u003e#1439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/ca30f070c360df162a3e3848e80e6fd3c9e74bff\"\u003e\u003ccode\u003eca30f07\u003c/code\u003e\u003c/a\u003e release: 3.4.7 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1414\"\u003e#1414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/bb7739e5bccec7e1ab3dae3f3e42d02db3acaaae\"\u003e\u003ccode\u003ebb7739e\u003c/code\u003e\u003c/a\u003e release: 3.4.6 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1394\"\u003e#1394\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/011b0c78f2a0f57ee54f5fcccb697a46ca6e63ea\"\u003e\u003ccode\u003e011b0c7\u003c/code\u003e\u003c/a\u003e release: 3.4.5 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1382\"\u003e#1382\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5817ad969c15e67dfcd6cb37248d6e9c1553e7c3\"\u003e\u003ccode\u003e5817ad9\u003c/code\u003e\u003c/a\u003e release: 3.4.4 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1374\"\u003e#1374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/520edb0371a9638f9b51f1798051299a250c686b\"\u003e\u003ccode\u003e520edb0\u003c/code\u003e\u003c/a\u003e release: 3.4.3 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1352\"\u003e#1352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/6f67fd396a7b8c64294343999fe607ca1f5299c0\"\u003e\u003ccode\u003e6f67fd3\u003c/code\u003e\u003c/a\u003e Sync/3.4.2 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1322\"\u003e#1322\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5b0cdbbf52331e854c0a2de875b1a3790ecec2b8\"\u003e\u003ccode\u003e5b0cdbb\u003c/code\u003e\u003c/a\u003e chore: merge main into 3.x for 3.4.1 release (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1301\"\u003e#1301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/09f59115a311469de5b625225760593e551f080a\"\u003e\u003ccode\u003e09f5911\u003c/code\u003e\u003c/a\u003e test: added three more browsers to test setup (OSX, mobile)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5b16e0b892e82b1779d62b9928b43c4c4ff290b9\"\u003e\u003ccode\u003e5b16e0b\u003c/code\u003e\u003c/a\u003e Getting 3.x branch ready for 3.4.0 release (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1250\"\u003e#1250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cure53/DOMPurify/compare/2.4.7...3.4.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flatted` from 3.2.9 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7\"\u003e\u003ccode\u003e3bf0909\u003c/code\u003e\u003c/a\u003e 3.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802\"\u003e\u003ccode\u003e885ddcc\u003c/code\u003e\u003c/a\u003e fix CWE-1321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3\"\u003e\u003ccode\u003e0bdba70\u003c/code\u003e\u003c/a\u003e added flatted-view to the benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20\"\u003e\u003ccode\u003e2a02dce\u003c/code\u003e\u003c/a\u003e 3.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416\"\u003e\u003ccode\u003efba4e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/WebReflection/flatted/issues/89\"\u003e#89\u003c/a\u003e from WebReflection/python-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7\"\u003e\u003ccode\u003e5fe8648\u003c/code\u003e\u003c/a\u003e added \u0026quot;when in Rome\u0026quot; also a test for PHP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0\"\u003e\u003ccode\u003e53517ad\u003c/code\u003e\u003c/a\u003e some minor improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f\"\u003e\u003ccode\u003eb3e2a0c\u003c/code\u003e\u003c/a\u003e Fixing recursion issue in Python too\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad\"\u003e\u003ccode\u003ec4b46db\u003c/code\u003e\u003c/a\u003e Add SECURITY.md for security policy and reporting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988\"\u003e\u003ccode\u003ef86d071\u003c/code\u003e\u003c/a\u003e Create dependabot.yml for version updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/WebReflection/flatted/compare/v3.2.9...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 4.1.0 to 4.2.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.2.0] - 2026-06-01\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003edocs/safety.md\u003c/code\u003e with notes about processing untrusted YAML.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003emaxDepth\u003c/code\u003e (100) loader option. Not a problem, but gives a better\nexception instead of RangeError on stack overflow.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003emaxMergeSeqLength\u003c/code\u003e (20) loader option. Not a problem after \u003ccode\u003emerge\u003c/code\u003e fix,\nbut an additional restriction for safety.\u003c/li\u003e\n\u003cli\u003eAdded sourcemaps to \u003ccode\u003edist/\u003c/code\u003e builds.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eStop resolving numbers with underscores as numeric scalars,...\n\n_Description has been truncated_","html_url":"https://github.com/mneveroff/postlabel/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/mneveroff%2Fpostlabel/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"},{"uuid":"4432292336","node_id":"PR_kwDOIAra9c7a1Rt6","number":224,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-12T20:13:24.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-12T20:09:24.000Z","updated_at":"2026-05-12T20:13:32.000Z","time_to_close":240,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":7,"packages":[{"name":"@babel/plugin-transform-modules-systemjs","old_version":"7.25.9","new_version":"7.29.4","repository_url":"https://github.com/babel/babel"},{"name":"axios","old_version":"1.12.2","new_version":"1.16.0","repository_url":"https://github.com/axios/axios"},{"name":"fast-uri","old_version":"3.0.6","new_version":"3.1.2","repository_url":"https://github.com/fastify/fast-uri"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"postcss","old_version":"8.5.1","new_version":"8.5.14","repository_url":"https://github.com/postcss/postcss"},{"name":"simple-git","old_version":"3.35.1","new_version":"3.36.0","repository_url":"https://github.com/steveukx/git-js"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@babel/plugin-transform-modules-systemjs](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs) | `7.25.9` | `7.29.4` |\n| [axios](https://github.com/axios/axios) | `1.12.2` | `1.16.0` |\n| [fast-uri](https://github.com/fastify/fast-uri) | `3.0.6` | `3.1.2` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.1` | `8.5.14` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.35.1` | `3.36.0` |\n\n\nUpdates `@babel/plugin-transform-modules-systemjs` from 7.25.9 to 7.29.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e@​babel/plugin-transform-modules-systemjs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.4 (2026-05-05)\u003c/h2\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-modules-systemjs\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17974\"\u003e#17974\u003c/a\u003e [7.x backport]fix(systemjs): improve module string name support (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 1\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.3 (2026-04-30)\u003c/h2\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17923\"\u003e#17923\u003c/a\u003e Support flow extends bound (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-create-class-features-plugin\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17931\"\u003e#17931\u003c/a\u003e fix(decorators): replace super within all removed static elements (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-register\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17915\"\u003e#17915\u003c/a\u003e Fix thread synchronization issues in \u003ccode\u003e@babel/register\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-compat-data\u003c/code\u003e, \u003ccode\u003ebabel-plugin-bugfix-safari-rest-destructuring-rhs-array\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17788\"\u003e#17788\u003c/a\u003e Add bugfix plugin for Safari array rest destructuring bug (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17782\"\u003e#17782\u003c/a\u003e Improve trailing comma comment handling (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:memo: Documentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17847\"\u003e#17847\u003c/a\u003e Replace npmjs.com links with npmx.dev (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-import-to-platform-api\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-modules\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17818\"\u003e#17818\u003c/a\u003e Load async Wasm and JSON imports in parallel (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 4\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.2 (2026-03-16)\u003c/h2\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17840\"\u003e#17840\u003c/a\u003e [7.x backport] async x =\u0026gt; {} must be in leading pos (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helpers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17805\"\u003e#17805\u003c/a\u003e [7.x backport] fix: Properly handle await in finally (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-preset-env\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a458f66074b97d54773db8159af673d23b26079b\"\u003e\u003ccode\u003ea458f66\u003c/code\u003e\u003c/a\u003e v7.29.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/32ebd5aaf2526ddd176fd6a3d1e3dc594abdc8d9\"\u003e\u003ccode\u003e32ebd5a\u003c/code\u003e\u003c/a\u003e [7.x backport]fix(systemjs): improve module string name support (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17974\"\u003e#17974\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aa8394e454337d118ac3d40bfa3ee1a3cb3f3ed2\"\u003e\u003ccode\u003eaa8394e\u003c/code\u003e\u003c/a\u003e v7.29.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/0053db620c05acf0036f593b5aaf4e372daa79d0\"\u003e\u003ccode\u003e0053db6\u003c/code\u003e\u003c/a\u003e Update polyfill packages (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17727\"\u003e#17727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/61647ae2397c82c3c71f077b5ab109106a5cac0f\"\u003e\u003ccode\u003e61647ae\u003c/code\u003e\u003c/a\u003e v7.28.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a177d551adba99773f4ff00ea9bf46550def6132\"\u003e\u003ccode\u003ea177d55\u003c/code\u003e\u003c/a\u003e [Babel 8] Use \u003ccode\u003et.traverseFast\u003c/code\u003e to replace some \u003ccode\u003epath.traverse\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17518\"\u003e#17518\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/eebd3a06021c13d335b5b0bd79734df3abbea678\"\u003e\u003ccode\u003eeebd3a0\u003c/code\u003e\u003c/a\u003e v7.27.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/317e332e650bc04907bc787ab79f930288a3e71e\"\u003e\u003ccode\u003e317e332\u003c/code\u003e\u003c/a\u003e Enforce node protocol import (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17207\"\u003e#17207\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/fdc0fb59e119ee0b38bced63867a344a5b4bc2f3\"\u003e\u003ccode\u003efdc0fb5\u003c/code\u003e\u003c/a\u003e [Babel 8] Bump nodejs requirements to \u003ccode\u003e^20.19.0 || \u0026gt;= 22.12.0\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17204\"\u003e#17204\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cd24cc07ef6558b7f6510f9177f6393c91b0549f\"\u003e\u003ccode\u003ecd24cc0\u003c/code\u003e\u003c/a\u003e chore: Update TS 5.7 (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17053\"\u003e#17053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.4/packages/babel-plugin-transform-modules-systemjs\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​babel/plugin-transform-modules-systemjs\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.12.2 to 1.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFetch adapter now enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e and \u003ccode\u003emaxContentLength\u003c/code\u003e.\u003c/strong\u003e These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy requests now preserve user-supplied \u003ccode\u003eHost\u003c/code\u003e headers.\u003c/strong\u003e Previously, the proxy path could overwrite a custom \u003ccode\u003eHost\u003c/code\u003e. Virtual-host-style routing through a proxy will now behave correctly. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBasic auth credentials embedded in URLs are now URL-decoded.\u003c/strong\u003e If you have percent-encoded credentials in a URL (e.g. \u003ccode\u003ehttps://user:p%40ss@host\u003c/code\u003e), the decoded value is what now goes on the wire. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eparseProtocol\u003c/code\u003e now strictly requires a colon in the protocol separator.\u003c/strong\u003e Strings that loosely parsed as protocols before may no longer match. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecated \u003ccode\u003eunescape()\u003c/code\u003e replaced with modern UTF-8 encoding.\u003c/strong\u003e Non-ASCII URL handling is now spec-correct; consumers depending on legacy \u003ccode\u003eunescape()\u003c/code\u003e quirks may see different output bytes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003etransformRequest\u003c/code\u003e input typing change was reverted.\u003c/strong\u003e The typing change introduced in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e was reverted in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e after follow-up review — net behavior is unchanged from 1.15.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eQUERY HTTP Method:\u003c/strong\u003e Added support for the QUERY HTTP method across adapters and type definitions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10802\"\u003e#10802\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eECONNREFUSED Error Constant:\u003c/strong\u003e Exposed \u003ccode\u003eECONNREFUSED\u003c/code\u003e as a constant on \u003ccode\u003eAxiosError\u003c/code\u003e so callers can match connection-refused failures without comparing string literals (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/6485\"\u003e#6485\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEncode Helper Export:\u003c/strong\u003e Exported the internal \u003ccode\u003eencode\u003c/code\u003e helper from \u003ccode\u003ebuildURL\u003c/code\u003e so userland param serializers can reuse the same encoding logic that axios uses internally. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6897\"\u003e#6897\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Redirects \u0026amp; Headers:\u003c/strong\u003e Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing \u003ccode\u003erequestDetails\u003c/code\u003e argument on \u003ccode\u003ebeforeRedirect\u003c/code\u003e, preserved user-supplied \u003ccode\u003eHost\u003c/code\u003e headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10794\"\u003e#10794\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10800\"\u003e#10800\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6241\"\u003e#6241\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Streams \u0026amp; Timeouts:\u003c/strong\u003e Preserved the partial response object on \u003ccode\u003eAxiosError\u003c/code\u003e when a stream is aborted after headers arrive, honoured the \u003ccode\u003etimeout\u003c/code\u003e option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and \u003ccode\u003emaxRedirects: 0\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10708\"\u003e#10708\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7149\"\u003e#7149\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Enforced \u003ccode\u003emaxBodyLength\u003c/code\u003e / \u003ccode\u003emaxContentLength\u003c/code\u003e in the fetch adapter, set the \u003ccode\u003eUser-Agent\u003c/code\u003e header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a \u003ccode\u003eTypeError\u003c/code\u003e in restricted environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10772\"\u003e#10772\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10806\"\u003e#10806\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Adapter:\u003c/strong\u003e Unsubscribed the \u003ccode\u003ecancelToken\u003c/code\u003e and \u003ccode\u003eAbortSignal\u003c/code\u003e listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e Attached the parsed response to \u003ccode\u003eAxiosError\u003c/code\u003e when \u003ccode\u003eJSON.parse\u003c/code\u003e fails inside \u003ccode\u003edispatchRequest\u003c/code\u003e, prevented \u003ccode\u003esettle\u003c/code\u003e from emitting \u003ccode\u003eundefined\u003c/code\u003e error codes, and tightened the \u003ccode\u003eparseProtocol\u003c/code\u003e regex to require a colon in the protocol separator. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10724\"\u003e#10724\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes \u0026amp; Exports:\u003c/strong\u003e Aligned the CommonJS \u003ccode\u003eCancelToken\u003c/code\u003e typings with the ESM build, fixed a compiler error caused by \u003ccode\u003eRawAxiosHeaders\u003c/code\u003e, and re-exported \u003ccode\u003ecreate\u003c/code\u003e from the package index. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7414\"\u003e#7414\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6389\"\u003e#6389\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6460\"\u003e#6460\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUTF-8 Encoding:\u003c/strong\u003e Replaced the deprecated \u003ccode\u003eunescape()\u003c/code\u003e call with a modern UTF-8 encoding implementation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMisc Cleanup:\u003c/strong\u003e Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRefactor — ES6 Modernisation:\u003c/strong\u003e Modernised the \u003ccode\u003eutils\u003c/code\u003e module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Hardened the HTTP test server lifecycle to fix flaky \u003ccode\u003eFormData\u003c/code\u003e EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10820\"\u003e#10820\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10791\"\u003e#10791\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10796\"\u003e#10796\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Documented \u003ccode\u003eparamsSerializer.encode\u003c/code\u003e for strict RFC 3986 query encoding, updated the \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10821\"\u003e#10821\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10782\"\u003e#10782\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10759\"\u003e#10759\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10804\"\u003e#10804\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReverted:\u003c/strong\u003e Reverted the \u003ccode\u003etransformRequest\u003c/code\u003e input typing change from \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e after follow-up review. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eactions/setup-node\u003c/code\u003e, the \u003ccode\u003egithub-actions\u003c/code\u003e group, and \u003ccode\u003epostcss\u003c/code\u003e (in \u003ccode\u003e/docs\u003c/code\u003e) to their latest versions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10785\"\u003e#10785\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10813\"\u003e#10813\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10814\"\u003e#10814\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRelease:\u003c/strong\u003e Updated changelog and packages, and prepared the 1.16.0 release. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10790\"\u003e#10790\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/singhankit001\"\u003e\u003ccode\u003e@​singhankit001\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/iruizsalinas\"\u003e\u003ccode\u003e@​iruizsalinas\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/MarcosNocetti\"\u003e\u003ccode\u003e@​MarcosNocetti\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/deepview-autofix\"\u003e\u003ccode\u003e@​deepview-autofix\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFetch adapter now enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e and \u003ccode\u003emaxContentLength\u003c/code\u003e.\u003c/strong\u003e These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy requests now preserve user-supplied \u003ccode\u003eHost\u003c/code\u003e headers.\u003c/strong\u003e Previously, the proxy path could overwrite a custom \u003ccode\u003eHost\u003c/code\u003e. Virtual-host-style routing through a proxy will now behave correctly. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBasic auth credentials embedded in URLs are now URL-decoded.\u003c/strong\u003e If you have percent-encoded credentials in a URL (e.g. \u003ccode\u003ehttps://user:p%40ss@host\u003c/code\u003e), the decoded value is what now goes on the wire. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eparseProtocol\u003c/code\u003e now strictly requires a colon in the protocol separator.\u003c/strong\u003e Strings that loosely parsed as protocols before may no longer match. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecated \u003ccode\u003eunescape()\u003c/code\u003e replaced with modern UTF-8 encoding.\u003c/strong\u003e Non-ASCII URL handling is now spec-correct; consumers depending on legacy \u003ccode\u003eunescape()\u003c/code\u003e quirks may see different output bytes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003etransformRequest\u003c/code\u003e input typing change was reverted.\u003c/strong\u003e The typing change introduced in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e was reverted in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e after follow-up review — net behavior is unchanged from 1.15.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eQUERY HTTP Method:\u003c/strong\u003e Added support for the QUERY HTTP method across adapters and type definitions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10802\"\u003e#10802\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eECONNREFUSED Error Constant:\u003c/strong\u003e Exposed \u003ccode\u003eECONNREFUSED\u003c/code\u003e as a constant on \u003ccode\u003eAxiosError\u003c/code\u003e so callers can match connection-refused failures without comparing string literals (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/6485\"\u003e#6485\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEncode Helper Export:\u003c/strong\u003e Exported the internal \u003ccode\u003eencode\u003c/code\u003e helper from \u003ccode\u003ebuildURL\u003c/code\u003e so userland param serializers can reuse the same encoding logic that axios uses internally. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6897\"\u003e#6897\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Redirects \u0026amp; Headers:\u003c/strong\u003e Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing \u003ccode\u003erequestDetails\u003c/code\u003e argument on \u003ccode\u003ebeforeRedirect\u003c/code\u003e, preserved user-supplied \u003ccode\u003eHost\u003c/code\u003e headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10794\"\u003e#10794\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10800\"\u003e#10800\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6241\"\u003e#6241\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Streams \u0026amp; Timeouts:\u003c/strong\u003e Preserved the partial response object on \u003ccode\u003eAxiosError\u003c/code\u003e when a stream is aborted after headers arrive, honoured the \u003ccode\u003etimeout\u003c/code\u003e option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and \u003ccode\u003emaxRedirects: 0\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10708\"\u003e#10708\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7149\"\u003e#7149\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Enforced \u003ccode\u003emaxBodyLength\u003c/code\u003e / \u003ccode\u003emaxContentLength\u003c/code\u003e in the fetch adapter, set the \u003ccode\u003eUser-Agent\u003c/code\u003e header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a \u003ccode\u003eTypeError\u003c/code\u003e in restricted environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10772\"\u003e#10772\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10806\"\u003e#10806\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Adapter:\u003c/strong\u003e Unsubscribed the \u003ccode\u003ecancelToken\u003c/code\u003e and \u003ccode\u003eAbortSignal\u003c/code\u003e listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e Attached the parsed response to \u003ccode\u003eAxiosError\u003c/code\u003e when \u003ccode\u003eJSON.parse\u003c/code\u003e fails inside \u003ccode\u003edispatchRequest\u003c/code\u003e, prevented \u003ccode\u003esettle\u003c/code\u003e from emitting \u003ccode\u003eundefined\u003c/code\u003e error codes, and tightened the \u003ccode\u003eparseProtocol\u003c/code\u003e regex to require a colon in the protocol separator. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10724\"\u003e#10724\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes \u0026amp; Exports:\u003c/strong\u003e Aligned the CommonJS \u003ccode\u003eCancelToken\u003c/code\u003e typings with the ESM build, fixed a compiler error caused by \u003ccode\u003eRawAxiosHeaders\u003c/code\u003e, and re-exported \u003ccode\u003ecreate\u003c/code\u003e from the package index. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7414\"\u003e#7414\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6389\"\u003e#6389\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6460\"\u003e#6460\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUTF-8 Encoding:\u003c/strong\u003e Replaced the deprecated \u003ccode\u003eunescape()\u003c/code\u003e call with a modern UTF-8 encoding implementation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMisc Cleanup:\u003c/strong\u003e Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRefactor — ES6 Modernisation:\u003c/strong\u003e Modernised the \u003ccode\u003eutils\u003c/code\u003e module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Hardened the HTTP test server lifecycle to fix flaky \u003ccode\u003eFormData\u003c/code\u003e EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10820\"\u003e#10820\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10791\"\u003e#10791\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10796\"\u003e#10796\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Documented \u003ccode\u003eparamsSerializer.encode\u003c/code\u003e for strict RFC 3986 query encoding, updated the \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10821\"\u003e#10821\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10782\"\u003e#10782\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10759\"\u003e#10759\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10804\"\u003e#10804\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReverted:\u003c/strong\u003e Reverted the \u003ccode\u003etransformRequest\u003c/code\u003e input typing change from \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e after follow-up review. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eactions/setup-node\u003c/code\u003e, the \u003ccode\u003egithub-actions\u003c/code\u003e group, and \u003ccode\u003epostcss\u003c/code\u003e (in \u003ccode\u003e/docs\u003c/code\u003e) to their latest versions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10785\"\u003e#10785\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10813\"\u003e#10813\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10814\"\u003e#10814\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRelease:\u003c/strong\u003e Updated changelog and packages, and prepared the 1.16.0 release. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10790\"\u003e#10790\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/singhankit001\"\u003e\u003ccode\u003e@​singhankit001\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/iruizsalinas\"\u003e\u003ccode\u003e@​iruizsalinas\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/MarcosNocetti\"\u003e\u003ccode\u003e@​MarcosNocetti\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/deepview-autofix\"\u003e\u003ccode\u003e@​deepview-autofix\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/df53d7dd99b202fb194217abd127ae6a630e70dc\"\u003e\u003ccode\u003edf53d7d\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.16.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9d92bcd32639d1eea5b89f03ae45f248d3bb058e\"\u003e\u003ccode\u003e9d92bcd\u003c/code\u003e\u003c/a\u003e fix: gadgets and smaller issues (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/5107ee69aee527b19eabaf80000ca65752135435\"\u003e\u003ccode\u003e5107ee6\u003c/code\u003e\u003c/a\u003e fix: prevent undefined error codes in settle (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e57349992f230b6b13e80613eb84302560aa5ba8\"\u003e\u003ccode\u003ee573499\u003c/code\u003e\u003c/a\u003e fix(fetch): defer global access in fetch adapter (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ad68e1a484b50086af427f767bbd7d6e3aab7ac3\"\u003e\u003ccode\u003ead68e1a\u003c/code\u003e\u003c/a\u003e fix(http): honor timeout during connect without redirects (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/2a51828213128691d2e37502b5eb2cf4965a737d\"\u003e\u003ccode\u003e2a51828\u003c/code\u003e\u003c/a\u003e fix(http): decode URL basic auth credentials (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0e8b6bbb542131bae9940618d84d5286255d4db1\"\u003e\u003ccode\u003e0e8b6bb\u003c/code\u003e\u003c/a\u003e fix(http): preserve user-supplied Host header when forwarding through a proxy...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/79f39e1d041dca87173226d0255f90eaf252564b\"\u003e\u003ccode\u003e79f39e1\u003c/code\u003e\u003c/a\u003e docs: document paramsSerializer.encode for strict RFC 3986 query encoding (\u003ca href=\"https://redirect.github.com/axios/axios/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0fe3a5fc14829535e1d517c662d448e86c33438e\"\u003e\u003ccode\u003e0fe3a5f\u003c/code\u003e\u003c/a\u003e [Docs/Types] Update \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions for ES2023 and add ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/cd6737fd84bdb7caf2a319d3579573a49f9d238d\"\u003e\u003ccode\u003ecd6737f\u003c/code\u003e\u003c/a\u003e chore: matches the sibling responseStream.on(aborted) handler and added tests...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.12.2...v1.16.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-uri` from 3.0.6 to 3.1.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fast-uri/releases\"\u003efast-uri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.2\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\"\u003ehttps://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle malformed fragment decoding as a parse error by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/171\"\u003efastify/fast-uri#171\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.1...v3.1.2\"\u003ehttps://github.com/fastify/fast-uri/compare/v3.1.1...v3.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6\"\u003ehttps://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps-dev): bump tsd from 0.32.0 to 0.33.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/148\"\u003efastify/fast-uri#148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/149\"\u003efastify/fast-uri#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(.npmrc): ignore scripts by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/150\"\u003efastify/fast-uri#150\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): remove \u003ccode\u003e@​fastify/pre-commit\u003c/code\u003e by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/151\"\u003efastify/fast-uri#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/152\"\u003efastify/fast-uri#152\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(ci): add concurrency config by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/153\"\u003efastify/fast-uri#153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/154\"\u003efastify/fast-uri#154\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/156\"\u003efastify/fast-uri#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(license): standardise license notice by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/159\"\u003efastify/fast-uri#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estyle: remove trailing whitespace by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/161\"\u003efastify/fast-uri#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove unused github files by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/162\"\u003efastify/fast-uri#162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update readme by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/164\"\u003efastify/fast-uri#164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-manager.yml from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/165\"\u003efastify/fast-uri#165\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/166\"\u003efastify/fast-uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump neostandard from 0.12.2 to 0.13.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/167\"\u003efastify/fast-uri#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add lock-threads workflow by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/169\"\u003efastify/fast-uri#169\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/162\"\u003efastify/fast-uri#162\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.1\"\u003ehttps://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: remove master branch support by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/126\"\u003efastify/fast-uri#126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(test) remove .gitkeep by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/128\"\u003efastify/fast-uri#128\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(ci): set job permissions by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/129\"\u003efastify/fast-uri#129\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: set permissions at workflow level by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/131\"\u003efastify/fast-uri#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: set workflow permissions to read-only by default by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/132\"\u003efastify/fast-uri#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(ci): restore job level permissions by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/133\"\u003efastify/fast-uri#133\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump tsd from 0.31.2 to 0.32.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/134\"\u003efastify/fast-uri#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(ci): pin actions to commit-hash by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/135\"\u003efastify/fast-uri#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add node 24 to test matrix by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/136\"\u003efastify/fast-uri#136\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/919dd8ea7689fcc220d0d9b71307f5095e723ef9\"\u003e\u003ccode\u003e919dd8e\u003c/code\u003e\u003c/a\u003e Bumped v3.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/c65ba573714af6b8e19e481d9444c27bc4355d07\"\u003e\u003ccode\u003ec65ba57\u003c/code\u003e\u003c/a\u003e fixup: linting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/6c86c17c3d76fb93aa3700ec6c0fa00faeb97293\"\u003e\u003ccode\u003e6c86c17\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/a95158ad308df4d92bbde4eba699ce5165e9f796\"\u003e\u003ccode\u003ea95158a\u003c/code\u003e\u003c/a\u003e Handle malformed fragment decoding without throwing (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/171\"\u003e#171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/cea547c91c6aae610041b17b75792ca4aa035a6d\"\u003e\u003ccode\u003ecea547c\u003c/code\u003e\u003c/a\u003e Bumped v3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/876ce79b662c3e5015e4e7dffe6f37752ad34f35\"\u003e\u003ccode\u003e876ce79\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/dcdf690b71a7bb3a19887ada65a9ab160d83bcc0\"\u003e\u003ccode\u003edcdf690\u003c/code\u003e\u003c/a\u003e ci: add lock-threads workflow (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/169\"\u003e#169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/c860e6589b1ac346f66e114b4eadb9613768108c\"\u003e\u003ccode\u003ec860e65\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump neostandard from 0.12.2 to 0.13.0 (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/167\"\u003e#167\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/9b4c6dc82fde0ca44e674403ece9185d85bb6d5f\"\u003e\u003ccode\u003e9b4c6dc\u003c/code\u003e\u003c/a\u003e build(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/166\"\u003e#166\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/85d09a9f7aa76b32c2bb005a90a71e144c361d24\"\u003e\u003ccode\u003e85d09a9\u003c/code\u003e\u003c/a\u003e build(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-mana...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.0.6...v3.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `follow-redirects` from 1.15.9 to 1.16.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/0c23a223067201c368035e82954c11eb2578a33b\"\u003e\u003ccode\u003e0c23a22\u003c/code\u003e\u003c/a\u003e Release version 1.16.0 of the npm package.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/844c4d302ac963d29bdb5dc1754ec7df3d70d7f9\"\u003e\u003ccode\u003e844c4d3\u003c/code\u003e\u003c/a\u003e Add sensitiveHeaders option.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/5e8b8d024e2c76f804a284258e585ecb49a575be\"\u003e\u003ccode\u003e5e8b8d0\u003c/code\u003e\u003c/a\u003e ci: add Node.js 24.x to the CI matrix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/7953e2255aa0b93602eed3804f3bc5e6923a03af\"\u003e\u003ccode\u003e7953e22\u003c/code\u003e\u003c/a\u003e ci: upgrade GitHub Actions to use setup-node@v6 and checkout@v6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/86dc1f86e4b56bcd642c78384d51f10f123aea75\"\u003e\u003ccode\u003e86dc1f8\u003c/code\u003e\u003c/a\u003e Sanitizing input.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/21ef28a544c5e57f4c34b8476d75f2144609a1eb\"\u003e\u003ccode\u003e21ef28a\u003c/code\u003e\u003c/a\u003e Release version 1.15.11 of the npm package.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/7c88135da3bd0681a7e156ee66b16b2f6f98b480\"\u003e\u003ccode\u003e7c88135\u003c/code\u003e\u003c/a\u003e Roll back tree shaking.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/6e389ba094beec211a8847788a146917a16c1bdb\"\u003e\u003ccode\u003e6e389ba\u003c/code\u003e\u003c/a\u003e Release version 1.15.10 of the npm package.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/5bc496e0229abda823221e0c6267926a3f93f262\"\u003e\u003ccode\u003e5bc496e\u003c/code\u003e\u003c/a\u003e Shake me up before you go-go.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/694d6b47a42bc8377e5ef1480394de451e16bd5b\"\u003e\u003ccode\u003e694d6b4\u003c/code\u003e\u003c/a\u003e Bump minimist from 1.2.5 to 1.2.8\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/follow-redirects/follow-redirects/compare/v1.15.9...v1.16.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 2.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postcss` from 8.5.1 to 8.5.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/releases\"\u003epostcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed custom syntax regression (by \u003ca href=\"https://github.com/43081j\"\u003e\u003ccode\u003e@​43081j\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epostcss-scss\u003c/code\u003e commend regression.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed reading any file via user-generated CSS.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eopts.unsafeMap\u003c/code\u003e to disable checks.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed nested brackets parsing performance (by \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/blob/main/CHANGELOG.md\"\u003epostcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/3ec13948ae0006e1bde2dfb545346341ac8b2dcf\"\u003e\u003ccode\u003e3ec1394\u003c/code\u003e\u003c/a\u003e Release 8.5.14 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/f2bb827b20b591080977412555aa3e5baf588620\"\u003e\u003ccode\u003ef2bb827\u003c/code\u003e\u003c/a\u003e Update dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/d75953d60854ad835fd21dde0b11081522341020\"\u003e\u003ccode\u003ed75953d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2084\"\u003e#2084\u003c/a\u003e from 43081j/raw-raws-rawing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/68bd2139b5dcaf5a682bc2e8826d8557be2d1480\"\u003e\u003ccode\u003e68bd213\u003c/code\u003e\u003c/a\u003e fix: always call \u003ccode\u003eraw\u003c/code\u003e to retrieve raw values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/af58cf1b7af02e9b9fcb138a4a2d7ef3450158b1\"\u003e\u003ccode\u003eaf58cf1\u003c/code\u003e\u003c/a\u003e Release 8.5.13 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/f227dbd0e9443e5f33e18e633b8b4d2b55aac5ee\"\u003e\u003ccode\u003ef227dbd\u003c/code\u003e\u003c/a\u003e Temporary ignore pnpm 11 config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/d3abd40d723cf3559e5ddb5fc738b7cb64e92bb0\"\u003e\u003ccode\u003ed3abd40\u003c/code\u003e\u003c/a\u003e Update dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/dd06c3e11362087bc18f9c20cee30fd82bda3de9\"\u003e\u003ccode\u003edd06c3e\u003c/code\u003e\u003c/a\u003e Revert stringifier changes because of the conflict with postcss-scss\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/ae889c815fb88d785401a88f1a7dfc8cb11915fb\"\u003e\u003ccode\u003eae889c8\u003c/code\u003e\u003c/a\u003e Try to fix CI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/e0093e49bcf00347383a13e40bb1f67bc823ca15\"\u003e\u003ccode\u003ee0093e4\u003c/code\u003e\u003c/a\u003e Move to pnpm 11\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/postcss/postcss/compare/8.5.1...8.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `simple-git` from 3.35.1 to 3.36.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/releases\"\u003esimple-git's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esimple-git@3.36.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e89a2294: Extend known exploitable configuration keys and per-task environment variables.\u003c/p\u003e\n\u003cp\u003eNote - \u003ccode\u003eParsedVulnerabilities\u003c/code\u003e from \u003ccode\u003eargv-parser\u003c/code\u003e is removed in favour of a readonly array of \u003ccode\u003eVulnerability\u003c/code\u003e to match usage in \u003ccode\u003esimple-git\u003c/code\u003e, rolled into the new \u003ccode\u003evulnerabilityCheck\u003c/code\u003e for simpler access to the identified issues.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/zebbern\"\u003e\u003ccode\u003e@​zebbern\u003c/code\u003e\u003c/a\u003e for identifying the need to block \u003ccode\u003ecore.fsmonitor\u003c/code\u003e.\nThanks to \u003ca href=\"https://github.com/kodareef5\"\u003e\u003ccode\u003e@​kodareef5\u003c/code\u003e\u003c/a\u003e for identifying the need to block \u003ccode\u003eGIT_CONFIG_COUNT\u003c/code\u003e environment variables and \u003ccode\u003e--template\u003c/code\u003e / \u003ccode\u003emerge\u003c/code\u003e related config.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e1ad57e8: Remove conflicting node:buffer import\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [89a2294]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [675570a]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/argv-parser\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.1.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/args-pathspec\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.0.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.35.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e0cf9d8c: Improvements for mono-repo publishing pipeline\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [0cf9d8c]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/args-pathspec\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.0.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/argv-parser\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.0.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/blob/main/simple-git/CHANGELOG.md\"\u003esimple-git's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.36.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e89a2294: Extend known exploitable configuration keys and per-task environment variables.\u003c/p\u003e\n\u003cp\u003eNote - \u003ccode\u003eParsedVulnerabilities\u003c/code\u003e from \u003ccode\u003eargv-parser\u003c/code\u003e is removed in favour of a readonly array of \u003ccode\u003eVulnerability\u003c/code\u003e to match usage in \u003ccode\u003esimple-git\u003c/code\u003e, rolled into the new \u003ccode\u003evulnerabilityCheck\u003c/code\u003e for simpler access to the identified issues.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/zebbern\"\u003e\u003ccode\u003e@​zebbern\u003c/code\u003e\u003c/a\u003e for identifying the need to block \u003ccode\u003ecore.fsmonitor\u003c/code\u003e.\nThanks to \u003ca href=\"https://github.com/kodareef5\"\u003e\u003ccode\u003e@​kodareef5\u003c/code\u003e\u003c/a\u003e for identifying the need to block \u003ccode\u003eGIT_CONFIG_COUNT\u003c/code\u003e environment variables and \u003ccode\u003e--template\u003c/code\u003e / \u003ccode\u003emerge\u003c/code\u003e related config.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e1ad57e8: Remove conflicting node:buffer import\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [89a2294]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [675570a]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/argv-parser\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.1.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/args-pathspec\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.0.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.35.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e0cf9d8c: Improvements for mono-repo publishing pipeline\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [0cf9d8c]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/args-pathspec\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.0.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/argv-parser\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.0.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/7dc1a532a9ec92fb08c93202954be73175b07d83\"\u003e\u003ccode\u003e7dc1a53\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/76f5376bd418cb8baf5ec32757af442d47128e22\"\u003e\u003ccode\u003e76f5376\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/steveukx/git-js/tree/HEAD/simple-git/issues/1061\"\u003e#1061\u003c/a\u003e from Vinzent03/fix/buffer-import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/89a2294febed5dfe737c4c735d936bb6018746a8\"\u003e\u003ccode\u003e89a2294\u003c/code\u003e\u003c/a\u003e Environment Parsing (\u003ca href=\"https://github.com/steveukx/git-js/tree/HEAD/simple-git/issues/1156\"\u003e#1156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/1b91b762f047777ca6686f34ac3f7b8a543a4780\"\u003e\u003ccode\u003e1b91b76\u003c/code\u003e\u003c/a\u003e fix: remove explicit node:buffer import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/e390685960a3461875dce89d87ab80e3143d79fe\"\u003e\u003ccode\u003ee390685\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/3c9e4b8309667d0cb4102cda770f92075fc781dd\"\u003e\u003ccode\u003e3c9e4b8\u003c/code\u003e\u003c/a\u003e Pin version of \u003ccode\u003e@​simple-git/args-pathspec\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/94ee21fd5a2a6182fbf0f218a5efca2057b567cd\"\u003e\u003ccode\u003e94ee21f\u003c/code\u003e\u003c/a\u003e Export \u003ccode\u003epathspec\u003c/code\u003e types through \u003ccode\u003esimple-git\u003c/code\u003e for backward compatibility\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/steveukx/git-js/commits/simple-git@3.36.0/simple-git\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Enterprise-CMCS/seatool-connectors/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Enterprise-CMCS/seatool-connectors/pull/224","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Enterprise-CMCS%2Fseatool-connectors/issues/224","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/224/packages"},{"uuid":"4373963305","node_id":"PR_kwDONYUC2c7X34sq","number":62,"state":"open","title":"Bump the npm_and_yarn group across 2 directories with 23 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-04T04:10:32.000Z","updated_at":"2026-05-04T04:10:40.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":23,"packages":[{"name":"uuid","old_version":"10.0.0","new_version":"14.0.0","repository_url":"https://github.com/uuidjs/uuid"},{"name":"ajv","old_version":"6.12.6","new_version":"6.15.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"cookie","old_version":"0.4.2","new_version":"0.7.2","repository_url":"https://github.com/jshttp/cookie"},{"name":"@smithy/config-resolver","old_version":"4.1.4","new_version":"4.4.17","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"axios","old_version":"1.7.7","new_version":"1.16.0","repository_url":"https://github.com/axios/axios"},{"name":"bn.js","old_version":"5.2.1","new_version":"5.2.3","repository_url":"https://github.com/indutny/bn.js"},{"name":"bn.js","old_version":"4.12.0","new_version":"4.12.3","repository_url":"https://github.com/indutny/bn.js"},{"name":"body-parser","old_version":"2.2.0","new_version":"2.2.2","repository_url":"https://github.com/expressjs/body-parser"},{"name":"fast-xml-parser","old_version":"5.2.5","new_version":"5.7.2","repository_url":"https://github.com/NaturalIntelligence/fast-xml-parser"},{"name":"flatted","old_version":"3.3.1","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"handlebars","old_version":"4.7.8","new_version":"4.7.9","repository_url":"https://github.com/handlebars-lang/handlebars.js"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"multer","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/expressjs/multer"},{"name":"path-to-regexp","old_version":"8.2.0","new_version":"8.4.2","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"tar","old_version":"6.2.1","new_version":"7.5.11","repository_url":"https://github.com/isaacs/node-tar"},{"name":"validator","old_version":"13.12.0","new_version":"13.15.35","repository_url":"https://github.com/validatorjs/validator.js"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 19 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [uuid](https://github.com/uuidjs/uuid) | `10.0.0` | `14.0.0` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.15.0` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.14` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [cookie](https://github.com/jshttp/cookie) | `0.4.2` | `0.7.2` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `4.1.4` | `4.4.17` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [axios](https://github.com/axios/axios) | `1.7.7` | `1.16.0` |\n| [bn.js](https://github.com/indutny/bn.js) | `5.2.1` | `5.2.3` |\n| [bn.js](https://github.com/indutny/bn.js) | `4.12.0` | `4.12.3` |\n| [body-parser](https://github.com/expressjs/body-parser) | `2.2.0` | `2.2.2` |\n| [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) | `5.2.5` | `5.7.2` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.1` | `3.4.2` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [handlebars](https://github.com/handlebars-lang/handlebars.js) | `4.7.8` | `4.7.9` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [multer](https://github.com/expressjs/multer) | `2.0.2` | `2.1.1` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `8.2.0` | `8.4.2` |\n| [tar](https://github.com/isaacs/node-tar) | `6.2.1` | `7.5.11` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.12.0` | `13.15.35` |\n\nBumps the npm_and_yarn group with 1 update in the /services/server directory: [uuid](https://github.com/uuidjs/uuid).\n\nUpdates `uuid` from 10.0.0 to 14.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003edc4ddb8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003ef2c235f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003effa3138\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v13.0.1\"\u003e13.0.1\u003c/a\u003e (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/9d27ddf7046ce496ef39569ff84d948eeff9cb2a\"\u003e9d27ddf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v12.0.1\"\u003e12.0.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d61d6ac1f782cf6b1dd8661c60f11722cd49a0d\"\u003e3d61d6a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq\"\u003eGHSA-w5hq-g745-h8pq\u003c/a\u003e: \u003ccode\u003ev3()\u003c/code\u003e, \u003ccode\u003ev5()\u003c/code\u003e, and \u003ccode\u003ev6()\u003c/code\u003e did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid \u003ccode\u003eoffset\u003c/code\u003e was provided. A \u003ccode\u003eRangeError\u003c/code\u003e is now thrown if \u003ccode\u003eoffset \u0026lt; 0\u003c/code\u003e or \u003ccode\u003eoffset + 16 \u0026gt; buf.length\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecrypto\u003c/code\u003e is now expected to be globally defined (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd node@24 to ci matrix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/879\"\u003e#879\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/42b6178aa21a593257f0a72abacd220f0b7b8a92\"\u003e42b6178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f38cf10366ab074f9328ae2021eea04d5f2e530\"\u003e0f38cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ae786e27265f50bcf7cead196c29f1869297c42f\"\u003eae786e2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c7ee40598ed78584d81ab78dffded9fe5ff20b01\"\u003ec7ee405\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove v4() performance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/894\"\u003e#894\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/5fd974c12718c8848035650b69b8948f12ace197\"\u003e5fd974c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestore node: prefix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/889\"\u003e#889\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e1f42a354593093ba0479f0b4047dae82d28c507\"\u003ee1f42a3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7c1ea087a8149b57380fc8bb7f68c3a215cb6e4b\"\u003e\u003ccode\u003e7c1ea08\u003c/code\u003e\u003c/a\u003e chore(main): release 14.0.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34\"\u003e\u003ccode\u003e3d2c5b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003e\u003ccode\u003ef2c235f\u003c/code\u003e\u003c/a\u003e fix!: expect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/529ef0899f5dd503d2ee90d690585d63d78bc212\"\u003e\u003ccode\u003e529ef08\u003c/code\u003e\u003c/a\u003e chore: upgrade TypeScript and fixup types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/927\"\u003e#927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/086fd7976f11433edf9ac80be876b3ad243fe087\"\u003e\u003ccode\u003e086fd79\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003e\u003ccode\u003edc4ddb8\u003c/code\u003e\u003c/a\u003e feat!: drop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f1f9c9c9cedbae5a1d363d5406c5dfbabe81404\"\u003e\u003ccode\u003e0f1f9c9\u003c/code\u003e\u003c/a\u003e chore: switch to Biome for parsing and linting (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2879e64bf125add903c1eff6e0860542c605013\"\u003e\u003ccode\u003ee2879e6\u003c/code\u003e\u003c/a\u003e chore: use maintained version of npm-run-all (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/930\"\u003e#930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003e\u003ccode\u003effa3138\u003c/code\u003e\u003c/a\u003e fix: Use GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0423d49df2dc8efc300c804731d25f4d7e0fccc4\"\u003e\u003ccode\u003e0423d49\u003c/code\u003e\u003c/a\u003e docs: remove obsolete v1 option notes (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v10.0.0...v14.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/184bc32745d9d33b2322949b9f3cb5f7609bf5ec\"\u003e\u003ccode\u003e184bc32\u003c/code\u003e\u003c/a\u003e 6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/fea46afd1a76b12ff89493f6dc1bc46730c6d379\"\u003e\u003ccode\u003efea46af\u003c/code\u003e\u003c/a\u003e test/fix prototype pollution via $data ref with format keyword (\u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/2606\"\u003e#2606\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/10c05fcf3699b1a29ef5e611c011af3d3c97e6e3\"\u003e\u003ccode\u003e10c05fc\u003c/code\u003e\u003c/a\u003e 1.1.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/1afa1b22ead12f6a7a02f25bf0f7d64c2439b007\"\u003e\u003ccode\u003e1afa1b2\u003c/code\u003e\u003c/a\u003e Add opt-in { max } mitigation to v1 legacy line (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/103\"\u003e#103\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/2fbb6a2aa0f984bb2fb5f60252ca6cba3e1368ec\"\u003e\u003ccode\u003e2fbb6a2\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Backport fix for GHSA-7h2j-956f-4vf2 to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/101\"\u003e#101\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/102\"\u003e#102\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/0d7652e3093d3273151729812f9b0b79a17ecba6\"\u003e\u003ccode\u003e0d7652e\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-7h2j-956f-4vf2 to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/101\"\u003e#101\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/6c353caf23beb9644f858eb3fe38d43a68b82898\"\u003e\u003ccode\u003e6c353ca\u003c/code\u003e\u003c/a\u003e 1.1.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2\"\u003e\u003ccode\u003e7fd684f\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-f886-m6hf-6m8v (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/95\"\u003e#95\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `picomatch` from 2.3.1 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/releases\"\u003epicomatch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.2\u003c/h2\u003e\n\u003cp\u003eThis is a security release fixing several security relevant issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: exception when glob pattern contains constructor by \u003ca href=\"https://github.com/Jason3S\"\u003e\u003ccode\u003e@​Jason3S\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/micromatch/picomatch/pull/144\"\u003emicromatch/picomatch#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj\"\u003eCVE-2026-33671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p\"\u003eCVE-2026-33672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ehttps://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md\"\u003epicomatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eAll notable changes to this project will be documented in this file.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e4.0.0 (2024-02-07)\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad text values in parse \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/126\"\u003e#126\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/connor4312\"\u003e\u003ccode\u003e@​connor4312\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove process global to work outside of node \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/129\"\u003e#129\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/styfle\"\u003e\u003ccode\u003e@​styfle\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sideEffects to package.json \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/128\"\u003e#128\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/frandiox\"\u003e\u003ccode\u003e@​frandiox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003eos\u003c/code\u003e, make compatible browser environment. See \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/124\"\u003e#124\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/gwsbhqt\"\u003e\u003ccode\u003e@​gwsbhqt\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.1\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/81cba8d4b767cab3cb29d26eb4f691eed75b73b2\"\u003e\u003ccode\u003e81cba8d\u003c/code\u003e\u003c/a\u003e Publish 2.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/fc1f6b69006e9435caf8fb40d8aff378bc0b7bce\"\u003e\u003ccode\u003efc1f6b6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/eec17aee5428a7249e9ca5adbb8a0d28fa29619b\"\u003e\u003ccode\u003eeec17ae\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/78f8ca4362d9e66cadea97b93e292f10096452ed\"\u003e\u003ccode\u003e78f8ca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/156\"\u003e#156\u003c/a\u003e from micromatch/backport-144\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/3f4f10eaa65bf3a52e8f2999674cd27e11fa3c9b\"\u003e\u003ccode\u003e3f4f10e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/144\"\u003e#144\u003c/a\u003e from Jason3S/jdent-object-properties\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cookie` from 0.4.2 to 0.7.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jshttp/cookie/releases\"\u003ecookie's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.2\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix object assignment of \u003ccode\u003ehasOwnProperty\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/177\"\u003e#177\u003c/a\u003e)  bc38ffd\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAllow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eAlthough not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eAdd fast path for \u003ccode\u003eserialize\u003c/code\u003e without options, use \u003ccode\u003eobj.hasOwnProperty\u003c/code\u003e when parsing (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: parse cookies ~10% faster (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e by \u003ca href=\"https://github.com/kurtextrem\"\u003e\u003ccode\u003e@​kurtextrem\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/170\"\u003e#170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: narrow the validation of cookies to match RFC6265 (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/167\"\u003e#167\u003c/a\u003e by \u003ca href=\"https://github.com/bewinsnw\"\u003e\u003ccode\u003e@​bewinsnw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: add \u003ccode\u003emain\u003c/code\u003e to \u003ccode\u003epackage.json\u003c/code\u003e for rspack (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/166\"\u003e#166\u003c/a\u003e by \u003ca href=\"https://github.com/proudparrot2\"\u003e\u003ccode\u003e@​proudparrot2\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\"\u003ehttps://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003epartitioned\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003epriority\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eexpires\u003c/code\u003e option to reject invalid dates\u003c/li\u003e\n\u003cli\u003epref: improve default decode speed\u003c/li\u003e\n\u003cli\u003epref: remove slow string split in parse\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/d19eaa1a2bb9ca43ac0951edd852ba4e88e410e0\"\u003e\u003ccode\u003ed19eaa1\u003c/code\u003e\u003c/a\u003e 0.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/bc38ffd0eae716b199236dda061d0bdc74192dd3\"\u003e\u003ccode\u003ebc38ffd\u003c/code\u003e\u003c/a\u003e Fix object assignment of \u003ccode\u003ehasOwnProperty\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/177\"\u003e#177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/cf4658f492c5bd96aeaf5693c3500f8495031014\"\u003e\u003ccode\u003ecf4658f\u003c/code\u003e\u003c/a\u003e 0.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/6a8b8f5a49af7897b98ebfb29a1c4955afa3d33e\"\u003e\u003ccode\u003e6a8b8f5\u003c/code\u003e\u003c/a\u003e Allow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/58015c0b93de0b63db245cfdc5a108e511a81ad0\"\u003e\u003ccode\u003e58015c0\u003c/code\u003e\u003c/a\u003e Remove more code and perf wins (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/ab057d6c06b94a7b1e3358e69a685ae49c97b627\"\u003e\u003ccode\u003eab057d6\u003c/code\u003e\u003c/a\u003e 0.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/5f02ca87688481dbcf155e49ca8b61732f30e542\"\u003e\u003ccode\u003e5f02ca8\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/a5d591ce8447dd63821779724f96ad3c774c8579\"\u003e\u003ccode\u003ea5d591c\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/51968f94b5e820adeceef505539fa193ffe2d105\"\u003e\u003ccode\u003e51968f9\u003c/code\u003e\u003c/a\u003e Skip isNaN\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/9e7ca51ade4b325307eedd6b4dec190983e9e2cc\"\u003e\u003ccode\u003e9e7ca51\u003c/code\u003e\u003c/a\u003e perf(parse): cache length, return early (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jshttp/cookie/compare/v0.4.2...v0.7.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~blakeembrey\"\u003eblakeembrey\u003c/a\u003e, a new releaser for cookie since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 4.1.4 to 4.4.17\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/releases\"\u003e@​smithy/config-resolver's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.4.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [449ba5a]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.4.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.4.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [5a18069]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [cb76b1f]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [131fce4]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [52b4789]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [b4a8b6b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.4.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.14.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.14\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.14\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.4.15\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [8196133]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [2490c8c]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e@​smithy/config-resolver's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.4.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [449ba5a]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.4.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [5a18069]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [cb76b1f]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [131fce4]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [52b4789]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [b4a8b6b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.4.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.14.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.14\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.14\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.15\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [8196133]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [2490c8c]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.14\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cffd868]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.14.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.13\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.3.4\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.13\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eb1f0dba: fix(middleware-endpoint): update type of useDualStackEndpoint/useFipsEndpoint input config\nfix(config-resolver): add alternate values for NODE_USE_DUALSTACK_ENDPOINT_CONFIG_OPTIONS and NODE_USE_FIPS_ENDPOINT_CONFIG_OPTIONS\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/c077b47b045f90382003cab83b3bec14cbc1ec29\"\u003e\u003ccode\u003ec077b47\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/a5194303d19d5b5e4a7e3f08374768f3a507f800\"\u003e\u003ccode\u003ea519430\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/77e352f51cba8f14e98b55fe6527457776649f75\"\u003e\u003ccode\u003e77e352f\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/c01e9dff4efd3c6ac26f5701ed0b8b50d10c4e62\"\u003e\u003ccode\u003ec01e9df\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/a35b0ac4fb62f43764585a0916d87ef8c9a11dd5\"\u003e\u003ccode\u003ea35b0ac\u003c/code\u003e\u003c/a\u003e chore: use dist-es for rollup build of dist-cjs (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1942\"\u003e#1942\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/ab5df4e3687673c5c4e0df253756cb82bc685917\"\u003e\u003ccode\u003eab5df4e\u003c/code\u003e\u003c/a\u003e docs: update readmes for internal packages (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1932\"\u003e#1932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/9328be266ad3326901032b94df2eab0482be2769\"\u003e\u003ccode\u003e9328be2\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/b1f0dbaa7fde234daf12a539676f2191afc29ae3\"\u003e\u003ccode\u003eb1f0dba\u003c/code\u003e\u003c/a\u003e fix(config-resolver): add new config selectors (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1927\"\u003e#1927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/e3a0f6fa81e1049dd73dbd0331cb26caa059cd78\"\u003e\u003ccode\u003ee3a0f6f\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/4b5602d4fa925f83ef2f814ee42404daccdc686d\"\u003e\u003ccode\u003e4b5602d\u003c/code\u003e\u003c/a\u003e fix(config-resolver): update default value to undefined for dualstack/FIPS co...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@4.4.17/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.7.7 to 1.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFetch adapter now enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e and \u003ccode\u003emaxContentLength\u003c/code\u003e.\u003c/strong\u003e These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy requests now preserve user-supplied \u003ccode\u003eHost\u003c/code\u003e headers.\u003c/strong\u003e Previously, the proxy path could overwrite a custom \u003ccode\u003eHost\u003c/code\u003e. Virtual-host-style routing through a proxy will now behave correctly. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBasic auth credentials embedded in URLs are now URL-decoded.\u003c/strong\u003e If you have percent-encoded credentials in a URL (e.g. \u003ccode\u003ehttps://user:p%40ss@host\u003c/code\u003e), the decoded value is what now goes on the wire. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eparseProtocol\u003c/code\u003e now strictly requires a colon in the protocol separator.\u003c/strong\u003e Strings that loosely parsed as protocols before may no longer match. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecated \u003ccode\u003eunescape()\u003c/code\u003e replaced with modern UTF-8 encoding.\u003c/strong\u003e Non-ASCII URL handling is now spec-correct; consumers depending on legacy \u003ccode\u003eunescape()\u003c/code\u003e quirks may see different output bytes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003etransformRequest\u003c/code\u003e input typing change was reverted.\u003c/strong\u003e The typing change introduced in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e was reverted in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e after follow-up review — net behavior is unchanged from 1.15.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eQUERY HTTP Method:\u003c/strong\u003e Added support for the QUERY HTTP method across adapters and type definitions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10802\"\u003e#10802\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eECONNREFUSED Error Constant:\u003c/strong\u003e Exposed \u003ccode\u003eECONNREFUSED\u003c/code\u003e as a constant on \u003ccode\u003eAxiosError\u003c/code\u003e so callers can match connection-refused failures without comparing string literals (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/6485\"\u003e#6485\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEncode Helper Export:\u003c/strong\u003e Exported the internal \u003ccode\u003eencode\u003c/code\u003e helper from \u003ccode\u003ebuildURL\u003c/code\u003e so userland param serializers can reuse the same encoding logic that axios uses internally. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6897\"\u003e#6897\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Redirects \u0026amp; Headers:\u003c/strong\u003e Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing \u003ccode\u003erequestDetails\u003c/code\u003e argument on \u003ccode\u003ebeforeRedirect\u003c/code\u003e, preserved user-supplied \u003ccode\u003eHost\u003c/code\u003e headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10794\"\u003e#10794\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10800\"\u003e#10800\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6241\"\u003e#6241\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Streams \u0026amp; Timeouts:\u003c/strong\u003e Preserved the partial response object on \u003ccode\u003eAxiosError\u003c/code\u003e when a stream is aborted after headers arrive, honoured the \u003ccode\u003etimeout\u003c/code\u003e option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and \u003ccode\u003emaxRedirects: 0\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10708\"\u003e#10708\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7149\"\u003e#7149\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Enforced \u003ccode\u003emaxBodyLength\u003c/code\u003e / \u003ccode\u003emaxContentLength\u003c/code\u003e in the fetch adapter, set the \u003ccode\u003eUser-Agent\u003c/code\u003e header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a \u003ccode\u003eTypeError\u003c/code\u003e in restricted environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10772\"\u003e#10772\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10806\"\u003e#10806\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Adapter:\u003c/strong\u003e Unsubscribed the \u003ccode\u003ecancelToken\u003c/code\u003e and \u003ccode\u003eAbortSignal\u003c/code\u003e listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e Attached the parsed response to \u003ccode\u003eAxiosError\u003c/code\u003e when \u003ccode\u003eJSON.parse\u003c/code\u003e fails inside \u003ccode\u003edispatchRequest\u003c/code\u003e, prevented \u003ccode\u003esettle\u003c/code\u003e from emitting \u003ccode\u003eundefined\u003c/code\u003e error codes, and tightened the \u003ccode\u003eparseProtocol\u003c/code\u003e regex to require a colon in the protocol separator. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10724\"\u003e#10724\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes \u0026amp; Exports:\u003c/strong\u003e Aligned the CommonJS \u003ccode\u003eCancelToken\u003c/code\u003e typings with the ESM build, fixed a compiler error caused by \u003ccode\u003eRawAxiosHeaders\u003c/code\u003e, and re-exported \u003ccode\u003ecreate\u003c/code\u003e from the package index. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7414\"\u003e#7414\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6389\"\u003e#6389\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6460\"\u003e#6460\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUTF-8 Encoding:\u003c/strong\u003e Replaced the deprecated \u003ccode\u003eunescape()\u003c/code\u003e call with a modern UTF-8 encoding implementation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMisc Cleanup:\u003c/strong\u003e Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRefactor — ES6 Modernisation:\u003c/strong\u003e Modernised the \u003ccode\u003eutils\u003c/code\u003e module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Hardened the HTTP test server lifecycle to fix flaky \u003ccode\u003eFormData\u003c/code\u003e EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10820\"\u003e#10820\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10791\"\u003e#10791\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10796\"\u003e#10796\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Documented \u003ccode\u003eparamsSerializer.encode\u003c/code\u003e for strict RFC 3986 query encoding, updated the \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10821\"\u003e#10821\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10782\"\u003e#10782\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10759\"\u003e#10759\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10804\"\u003e#10804\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReverted:\u003c/strong\u003e Reverted the \u003ccode\u003etransformRequest\u003c/code\u003e input typing change from \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e after follow-up review. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eactions/setup-node\u003c/code\u003e, the \u003ccode\u003egithub-actions\u003c/code\u003e group, and \u003ccode\u003epostcss\u003c/code\u003e (in \u003ccode\u003e/docs\u003c/code\u003e) to their latest versions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10785\"\u003e#10785\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10813\"\u003e#10813\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10814\"\u003e#10814\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRelease:\u003c/strong\u003e Updated changelog and packages, and prepared the 1.16.0 release. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10790\"\u003e#10790\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/singhankit001\"\u003e\u003ccode\u003e@​singhankit001\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/iruizsalinas\"\u003e\u003ccode\u003e@​iruizsalinas\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/MarcosNocetti\"\u003e\u003ccode\u003e@​MarcosNocetti\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/deepview-autofix\"\u003e\u003ccode\u003e@​deepview-autofix\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev1.15.2 - April 21, 2026\u003c/h2\u003e\n\u003cp\u003eThis release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Hardening (HTTP Adapter):\u003c/strong\u003e Hardened the Node HTTP adapter and \u003ccode\u003eresolveConfig\u003c/code\u003e/\u003ccode\u003emergeConfig\u003c/code\u003e/validator paths to read only own properties and use null-prototype config objects, preventing polluted \u003ccode\u003eauth\u003c/code\u003e, \u003ccode\u003ebaseURL\u003c/code\u003e, \u003ccode\u003esocketPath\u003c/code\u003e, \u003ccode\u003ebeforeRedirect\u003c/code\u003e, and \u003ccode\u003einsecureHTTPParser\u003c/code\u003e from influencing requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSSRF via \u003ccode\u003esocketPath\u003c/code\u003e:\u003c/strong\u003e Rejects non-string \u003ccode\u003esocketPath\u003c/code\u003e values and adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e config option to restrict permitted Unix domain socket paths, returning \u003ccode\u003eAxiosError\u003c/code\u003e \u003ccode\u003eERR_BAD_OPTION_VALUE\u003c/code\u003e on mismatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSupply-chain Hardening:\u003c/strong\u003e Added \u003ccode\u003e.npmrc\u003c/code\u003e with \u003ccode\u003eignore-scripts=true\u003c/code\u003e, lockfile lint CI, non-blocking reproducible build diff, scoped CODEOWNERS, expanded \u003ccode\u003eSECURITY.md\u003c/code\u003e/\u003ccode\u003eTHREATMODEL.md\u003c/code\u003e with provenance verification (\u003ccode\u003enpm audit signatures\u003c/code\u003e), 60-day resolution policy, and maintainer incident-response runbook. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eallowedSocketPaths\u003c/code\u003e Config Option:\u003c/strong\u003e New request config option (and TypeScript types) to allowlist Unix domain socket paths used by the Node http adapter; backwards compatible when unset. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eKeep-alive Socket Memory Leak:\u003c/strong\u003e Installs a single per-socket \u003ccode\u003eerror\u003c/code\u003e listener tracking the active request via \u003ccode\u003ekAxiosSocketListener\u003c/code\u003e/\u003ccode\u003ekAxiosCurrentReq\u003c/code\u003e, eliminating per-request listener accumulation, \u003ccode\u003eMaxListenersExceededWarning\u003c/code\u003e, and linear heap growth under concurrent or long-running keep-alive workloads (fixes \u003ca href=\"https://redirect.github.com/axios/axios/issues/10780\"\u003e#10780\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eChangelog:\u003c/strong\u003e Updated \u003ccode\u003eCHANGELOG.md\u003c/code\u003e with v1.15.1 release notes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.15.1...v1.15.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003chr /\u003e\n\u003ch2\u003ev1.15.1 - April 19, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eHeader Injection Hardening:\u003c/strong\u003e Tightened validation and sanitisation across request header construction to close the header-injection attack surface. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10749\"\u003e#10749\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eCRLF Stripping in Multipart Headers:\u003c/strong\u003e Correctly strips CR/LF from multipart header values to prevent injection via field names and filenames. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10758\"\u003e#10758\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ePrototype Pollution / Auth Bypass:\u003c/strong\u003e Replaced unsafe \u003ccode\u003ein\u003c/code\u003e checks with \u003ccode\u003ehasOwnProperty\u003c/code\u003e to prevent authentication bypass via prototype pollution on config objects, with additional regression tests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10761\"\u003e#10761\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10760\"\u003e#10760\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ewithXSRFToken\u003c/code\u003e Truthy Bypass:\u003c/strong\u003e Short-circuits on any truthy non-boolean value, so an ambiguous config no longer silently leaks the XSRF token cross-origin. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003emaxBodyLength\u003c/code\u003e With Zero Redirects:\u003c/strong\u003e Enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e even when \u003ccode\u003emaxRedirects\u003c/code\u003e is set to \u003ccode\u003e0\u003c/code\u003e, closing a bypass path for oversized request bodies. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10753\"\u003e#10753\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eStreamed Response \u003ccode\u003emaxContentLength\u003c/code\u003e Bypass:\u003c/strong\u003e Applies \u003ccode\u003emaxContentLength\u003c/code\u003e to streamed responses that previously bypassed the cap. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10754\"\u003e#10754\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eFollow-up CVE Completion:\u003c/strong\u003e Completes an earlier incomplete CVE fix to fully close the regression window. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10755\"\u003e#10755\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/df53d7dd99b202fb194217abd127ae6a630e70dc\"\u003e\u003ccode\u003edf53d7d\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.16.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9d92bcd32639d1eea5b89f03ae45f248d3bb058e\"\u003e\u003ccode\u003e9d92bcd\u003c/code\u003e\u003c/a\u003e fix: gadgets and smaller issues (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/5107ee69aee527b19eabaf80000ca65752135435\"\u003e\u003ccode\u003e5107ee6\u003c/code\u003e\u003c/a\u003e fix: prevent undefined error codes in settle (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e57349992f230b6b13e80613eb84302560aa5ba8\"\u003e\u003ccode\u003ee573499\u003c/code\u003e\u003c/a\u003e fix(fetch): defer global access in fetch adapter (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ad68e1a484b50086af427f767bbd7d6e3aab7ac3\"\u003e\u003ccode\u003ead68e1a\u003c/code\u003e\u003c/a\u003e fix(http): honor timeout during connect without redirects (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/2a51828213128691d2e37502b5eb2cf4965a737d\"\u003e\u003ccode\u003e2a51828\u003c/code\u003e\u003c/a\u003e fix(http): decode URL basic auth credentials (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0e8b6bbb542131bae9940618d84d5286255d4db1\"\u003e\u003ccode\u003e0e8b6bb\u003c/code\u003e\u003c/a\u003e fix(http): preserve user-supplied Host header when forwarding through a proxy...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/79f39e1d041dca87173226d0255f90eaf252564b\"\u003e\u003ccode\u003e79f39e1\u003c/code\u003e\u003c/a\u003e docs: document paramsSerializer.encode for strict RFC 3986 query encoding (\u003ca href=\"https://redirect.github.com/axios/axios/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0fe3a5fc14829535e1d517c662d448e86c33438e\"\u003e\u003ccode\u003e0fe3a5f\u003c/code\u003e\u003c/a\u003e [Docs/Types] Update \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions for ES2023 and add ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/cd6737fd84bdb7caf2a319d3579573a49f9d238d\"\u003e\u003ccode\u003ecd6737f\u003c/code\u003e\u003c/a\u003e chore: matches the sibling responseStream.on(aborted) handler and added tests...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.7.7...v1.16.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bn.js` from 5.2.1 to 5.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/indutny/bn.js/blob/master/CHANGELOG.md\"\u003ebn.js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.2.3 / 2026-02-19\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.2 / 2025-04-25\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/ea6c072a951493ca99e5cd5f8da3851b90116271\"\u003e\u003ccode\u003eea6c072\u003c/code\u003e\u003c/a\u003e 5.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/33df26b5771e824f303a79ec6407409376baa64b\"\u003e\u003ccode\u003e33df26b\u003c/code\u003e\u003c/a\u003e fix imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/6db7c3818569423b94ebcf2bdff90fcfb9c47f6d\"\u003e\u003ccode\u003e6db7c38\u003c/code\u003e\u003c/a\u003e 5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/c7e1a532566c83fd0297ff7669c227b824928bf4\"\u003e\u003ccode\u003ec7e1a53\u003c/code\u003e\u003c/a\u003e Fix imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/4cc0bfa5195d54876a6b807827e582522c813019\"\u003e\u003ccode\u003e4cc0bfa\u003c/code\u003e\u003c/a\u003e docs: mention the max plain JS number argument value (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/307\"\u003e#307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/5df40f81ea8afb835b909bb7c21e0833cdeb6a30\"\u003e\u003ccode\u003e5df40f8\u003c/code\u003e\u003c/a\u003e Document \u003ccode\u003elength\u003c/code\u003e unit in \u003ccode\u003etoBuffer(...)\u003c/code\u003e input (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/299\"\u003e#299\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/indutny/bn.js/compare/v5.2.1...v5.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bn.js` from 4.12.0 to 4.12.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/indutny/bn.js/blob/master/CHANGELOG.md\"\u003ebn.js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.2.3 / 2026-02-19\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.2 / 2025-04-25\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/ea6c072a951493ca99e5cd5f8da3851b90116271\"\u003e\u003ccode\u003eea6c072\u003c/code\u003e\u003c/a\u003e 5.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/33df26b5771e824f303a79ec6407409376baa64b\"\u003e\u003ccode\u003e33df26b\u003c/code\u003e\u003c/a\u003e fix imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/6db7c3818569423b94ebcf2bdff90fcfb9c47f6d\"\u003e\u003ccode\u003e6db7c38\u003c/code\u003e\u003c/a\u003e 5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/c7e1a532566c83fd0297ff7669c227b824928bf4\"\u003e\u003ccode\u003ec7e1a53\u003c/code\u003e\u003c/a\u003e Fix imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/4cc0bfa5195d54876a6b807827e582522c813019\"\u003e\u003ccode\u003e4cc0bfa\u003c/code\u003e\u003c/a\u003e docs: mention the max plain JS number argument value (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/307\"\u003e#307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/5df40f81ea8afb835b909bb7c21e0833cdeb6a30\"\u003e\u003ccode\u003e5df40f8\u003c/code\u003e\u003c/a\u003e Document \u003ccode\u003elength\u003c/code\u003e unit in \u003ccode\u003etoBuffer(...)\u003c/code\u003e input (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/299\"\u003e#299\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/indutny/bn.js/compare/v5.2.1...v5.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `body-parser` from 2.2.0 to 2.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/body-parser/releases\"\u003ebody-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README links by \u003ca href=\"https://github.com/efekrskl\"\u003e\u003ccode\u003e@​efekrskl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/673\"\u003eexpressjs/body-parser#673\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: release notes for the v1.20.4 release by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/674\"\u003eexpressjs/body-parser#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update URL-encoded parser description to include ISO-8859-1 encoding support by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/679\"\u003eexpressjs/body-parser#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: use standard jsdoc tags everywhere by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/677\"\u003eexpressjs/body-parser#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: qs@^6.14.1 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/689\"\u003eexpressjs/body-parser#689\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(json): simplify strict mode error string construction by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/693\"\u003eexpressjs/body-parser#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 2.2.2 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/691\"\u003eexpressjs/body-parser#691\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/efekrskl\"\u003e\u003ccode\u003e@​efekrskl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/673\"\u003eexpressjs/body-parser#673\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/body-parser/compare/v2.2.1...v2.2.2\"\u003ehttps://github.com/expressjs/body-parser/compare/v2.2.1...v2.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.2.1\u003c/h2\u003e\n\u003ch2\u003eImportant: Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-13466\"\u003eCVE-2025-13466\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/body-parser/security/advisories/GHSA-wqch-xfxh-vrr4\"\u003eGHSA-wqch-xfxh-vrr4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: add dependabot by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/593\"\u003eexpressjs/body-parser#593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: use full SHAs for github action versions by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/594\"\u003eexpressjs/body-parser#594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: type-is@^2.0.1 by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/599\"\u003eexpressjs/body-parser#599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4.3.0 to 4.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/609\"\u003eexpressjs/body-parser#609\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.13 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/610\"\u003eexpressjs/body-parser#610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump eslint-plugin-promise from 6.1.1 to 6.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/611\"\u003eexpressjs/body-parser#611\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump eslint-plugin-import from 2.27.5 to 2.31.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/613\"\u003eexpressjs/body-parser#613\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump eslint-plugin-markdown from 3.0.0 to 3.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/612\"\u003eexpressjs/body-parser#612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add codeql github workflows scanning by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressj...\n\n_Description has been truncated_","html_url":"https://github.com/SherfeyInv/sourcify/pull/62","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/SherfeyInv%2Fsourcify/issues/62","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/62/packages"},{"uuid":"4272249184","node_id":"PR_kwDOOPPMvM7SzhbI","number":22,"state":"closed","title":"Bump the npm_and_yarn group across 13 directories with 23 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-16T23:51:01.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-15T23:09:04.000Z","updated_at":"2026-04-16T23:51:02.000Z","time_to_close":88917,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":23,"packages":[{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"formidable","old_version":"3.5.2","new_version":"3.5.4","repository_url":"https://github.com/node-formidable/formidable"},{"name":"glob","old_version":"10.4.5","new_version":"13.0.6","repository_url":"https://github.com/isaacs/node-glob"},{"name":"minimatch","old_version":"5.1.6","new_version":"5.1.9","repository_url":"https://github.com/isaacs/minimatch"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"minimatch","old_version":"9.0.5","new_version":"9.0.9","repository_url":"https://github.com/isaacs/minimatch"},{"name":"form-data","old_version":"4.0.2","new_version":"4.0.5","repository_url":"https://github.com/form-data/form-data"},{"name":"@saltcorn/data","old_version":"1.1.4-alpha.3","new_version":"1.4.5","repository_url":"https://github.com/saltcorn/saltcorn"},{"name":"pbkdf2","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/browserify/pbkdf2"},{"name":"serialize-javascript","old_version":"6.0.2","new_version":"removed","repository_url":"https://github.com/yahoo/serialize-javascript"},{"name":"@saltcorn/server","old_version":"1.1.4-alpha.3","new_version":"1.5.5","repository_url":"https://github.com/saltcorn/saltcorn"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 1 update in the /packages/filemanager directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 1 update in the /packages/plugins-loader directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-admin-models directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-base-plugin directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-builder directory: [lodash](https://github.com/lodash/lodash).\nBumps the npm_and_yarn group with 10 updates in the /packages/saltcorn-cli directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.2` | `3.5.4` |\n| [glob](https://github.com/isaacs/node-glob) | `10.4.5` | `13.0.6` |\n| [minimatch](https://github.com/isaacs/minimatch) | `5.1.6` | `5.1.9` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `9.0.5` | `9.0.9` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.2` | `4.0.5` |\n| [@saltcorn/data](https://github.com/saltcorn/saltcorn) | `1.1.4-alpha.3` | `1.4.5` |\n| [pbkdf2](https://github.com/browserify/pbkdf2) | `3.1.2` | `3.1.5` |\n| [serialize-javascript](https://github.com/yahoo/serialize-javascript) | `6.0.2` | `removed` |\n| [@saltcorn/server](https://github.com/saltcorn/saltcorn) | `1.1.4-alpha.3` | `1.5.5` |\n\nBumps the npm_and_yarn group with 3 updates in the /packages/saltcorn-data directory: [webpack](https://github.com/webpack/webpack), [axios](https://github.com/axios/axios) and [nodemailer](https://github.com/nodemailer/nodemailer).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-markup directory: [webpack](https://github.com/webpack/webpack).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-mobile-app directory: [webpack](https://github.com/webpack/webpack).\nBumps the npm_and_yarn group with 3 updates in the /packages/saltcorn-mobile-builder directory: [webpack](https://github.com/webpack/webpack), [@saltcorn/data](https://github.com/saltcorn/saltcorn) and [@saltcorn/server](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 2 updates in the /packages/saltcorn-random-tests directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn) and [@saltcorn/server](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-sbadmin2 directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 3 updates in the /packages/server directory: [underscore](https://github.com/jashkenas/underscore), [multer](https://github.com/expressjs/multer) and [@saltcorn/data](https://github.com/saltcorn/saltcorn).\n\nUpdates `svelte` from 4.2.20 to 5.55.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/releases\"\u003esvelte's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esvelte@5.55.4\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: never mark a child effect root as inert (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18111\"\u003e#18111\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: reset context after waiting on blockers of \u003ccode\u003e@const\u003c/code\u003e expressions (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18100\"\u003e#18100\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: keep flushing new eager effects (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18102\"\u003e#18102\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.55.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: ensure proper HMR updates for dynamic components (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18079\"\u003e#18079\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly calculate \u003ccode\u003e@const\u003c/code\u003e blockers (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18039\"\u003e#18039\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: freeze deriveds once their containing effects are destroyed (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17921\"\u003e#17921\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: defer error boundary rendering in forks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18076\"\u003e#18076\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: avoid false positives for reactivity loss warning (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18088\"\u003e#18088\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.55.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: invalidate \u003ccode\u003e@const\u003c/code\u003e tags based on visible references in legacy mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18041\"\u003e#18041\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle parens in template expressions more robustly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18075\"\u003e#18075\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: disallow \u003ccode\u003e--\u003c/code\u003e in \u003ccode\u003eidPrefix\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18038\"\u003e#18038\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correct types for \u003ccode\u003eontoggle\u003c/code\u003e on \u003ccode\u003e\u0026lt;details\u0026gt;\u003c/code\u003e elements (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18063\"\u003e#18063\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't override \u003ccode\u003e$destroy/set/on\u003c/code\u003e instance methods in dev mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18034\"\u003e#18034\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: unskip branches of earlier batches after commit (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18048\"\u003e#18048\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: never set derived.v inside fork (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18037\"\u003e#18037\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: skip rebase logic in non-async mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18040\"\u003e#18040\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't reset status of uninitialized deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18054\"\u003e#18054\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.55.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly handle bindings on the server (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18009\"\u003e#18009\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent hydration error on async \u003ccode\u003e{@html ...}\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17999\"\u003e#17999\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md\"\u003esvelte's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.55.4\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: never mark a child effect root as inert (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18111\"\u003e#18111\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: reset context after waiting on blockers of \u003ccode\u003e@const\u003c/code\u003e expressions (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18100\"\u003e#18100\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: keep flushing new eager effects (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18102\"\u003e#18102\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.55.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: ensure proper HMR updates for dynamic components (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18079\"\u003e#18079\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly calculate \u003ccode\u003e@const\u003c/code\u003e blockers (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18039\"\u003e#18039\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: freeze deriveds once their containing effects are destroyed (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17921\"\u003e#17921\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: defer error boundary rendering in forks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18076\"\u003e#18076\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: avoid false positives for reactivity loss warning (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18088\"\u003e#18088\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.55.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: invalidate \u003ccode\u003e@const\u003c/code\u003e tags based on visible references in legacy mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18041\"\u003e#18041\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle parens in template expressions more robustly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18075\"\u003e#18075\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: disallow \u003ccode\u003e--\u003c/code\u003e in \u003ccode\u003eidPrefix\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18038\"\u003e#18038\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correct types for \u003ccode\u003eontoggle\u003c/code\u003e on \u003ccode\u003e\u0026lt;details\u0026gt;\u003c/code\u003e elements (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18063\"\u003e#18063\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't override \u003ccode\u003e$destroy/set/on\u003c/code\u003e instance methods in dev mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18034\"\u003e#18034\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: unskip branches of earlier batches after commit (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18048\"\u003e#18048\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: never set derived.v inside fork (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18037\"\u003e#18037\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: skip rebase logic in non-async mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18040\"\u003e#18040\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't reset status of uninitialized deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18054\"\u003e#18054\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.55.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/7fddfbdbbde8813ee107d56f70f5ea6c3d3abbc3\"\u003e\u003ccode\u003e7fddfbd\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18105\"\u003e#18105\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/671fc2ea11b56f050f37f7e03564fb070bc8abea\"\u003e\u003ccode\u003e671fc2e\u003c/code\u003e\u003c/a\u003e fix: never mark a child effect root as inert (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18111\"\u003e#18111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0ed8c282f96960f52eaf077ffbe6e53c181b3774\"\u003e\u003ccode\u003e0ed8c28\u003c/code\u003e\u003c/a\u003e fix: reset context after waiting on blockers of \u003ccode\u003e@const\u003c/code\u003e expressions (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18100\"\u003e#18100\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/273f1a85a4dbe2937f2d97afa2511e828eb8ebba\"\u003e\u003ccode\u003e273f1a8\u003c/code\u003e\u003c/a\u003e fix: keep flushing new eager effects (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18102\"\u003e#18102\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/4a50e8ea3b7db1d8cd752b825032e4ce2878524b\"\u003e\u003ccode\u003e4a50e8e\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18085\"\u003e#18085\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/15588f5fbfe736f65e189e56047ee08678f5509f\"\u003e\u003ccode\u003e15588f5\u003c/code\u003e\u003c/a\u003e fix: avoid false positives for reactivity loss warning (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18088\"\u003e#18088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0e9e76f29262b5f64ac7a5d4db37ec83c9181634\"\u003e\u003ccode\u003e0e9e76f\u003c/code\u003e\u003c/a\u003e fix: freeze deriveds once their containing effects are destroyed (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17921\"\u003e#17921\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/3937ec03bdaae8d9c097f4f015560ee4b9e32cf3\"\u003e\u003ccode\u003e3937ec0\u003c/code\u003e\u003c/a\u003e fix: correctly calculate \u003ccode\u003e@const\u003c/code\u003e blockers (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18039\"\u003e#18039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/7be1a0247f1ea84db2e951ab27716c68de5b0650\"\u003e\u003ccode\u003e7be1a02\u003c/code\u003e\u003c/a\u003e fix: ensure proper HMR updates for dynamic components (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18079\"\u003e#18079\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/a4ce7760705bc58454e954488719e2ef6d17cafa\"\u003e\u003ccode\u003ea4ce776\u003c/code\u003e\u003c/a\u003e fix: defer error boundary rendering in forks (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18076\"\u003e#18076\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sveltejs/svelte/commits/svelte@5.55.4/packages/svelte\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for svelte since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@saltcorn/data` from 1.1.4-alpha.3 to 1.4.5\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/saltcorn/saltcorn/blob/v1.4.5/CHANGELOG.md\"\u003e\u003ccode\u003e@​saltcorn/data\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.4.5 - Released 5 April 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: Prevent malicious payloads from traversing paths in sync endpoints\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.1 - Released 19 November 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eDropdown option for List header filters - mutually exclusive with togglable header filters. Filters are activated with a hidden (revealed on hover) dropdown menu.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eBug fixes backported from 1.5.0 branch\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.0 - Released 24 October 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eWhen PageLoad triggers return directives (\u003ccode\u003enotify\u003c/code\u003e, \u003ccode\u003eeval_js\u003c/code\u003e etc.) these are now run on the the\nclient page.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWhen Table.deleteRows is called without a user argument, it implicitly has admin access, to make\nit consistent with other methods\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSome initial and limited support for composite primary keys in discovered and external tables.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einsert_any_row action:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003enow accepts a list of rows in its row expression and will insert all of them.\u003c/li\u003e\n\u003cli\u003eif the primary key value is set in the row expression, it will upsert the row (update if a row with this primary key value exists, otherwise insert)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eActions now have an option to run asynchronously from the builder action settings. If this is enabled, and dynamic updates are enabled, the action will run in the background instead of during a HTTP request. This is more robust for long-running actions; there should be no difference in user experience.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eprogress_bar\u003c/code\u003e action: Display or update the display of a progress message. This can appear in a toast message for actions that can run in parallel; or in a blocking popup-up modal if the progress display is required to freeze the user interface.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eList view now have options for header filters, row colour by formula,  table layout setting (corresponds to table-layout CSS property) and sticky header.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFilter aggregations (count, average over a table subset) previously ignored ownership. There is now a partial implementation of the owbership restriction, however this is still incomplete for ownership formulas involving joinfields.\u003c/li\u003e\n\u003cli\u003eWhen serving HTML files that have been uploaded to the file store, the mime type is now set to text/plain (unless the user is the owner of the file) to prevent user-uploaded files performing session hijacking. This can be disabled in the securioty settings if you trust all uploaded html files and need to serve them.. MathJax and svg files are cleaned with dompurify before serving. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003cli\u003eIt was previously possibly for a logged-in user to craft a request to change their own password without supplying their old password. This is now checked. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix formula constraints to support more translations to SQL\u003c/li\u003e\n\u003cli\u003eEdit: preserve file choices on form errors.\u003c/li\u003e\n\u003cli\u003eFix format fieldview for only day Dates.\u003c/li\u003e\n\u003cli\u003eFix full screen width on containers - this conflicted with position, which it now overrides.\u003c/li\u003e\n\u003cli\u003eFix jsdoc links from code editor\u003c/li\u003e\n\u003cli\u003eFix date parsing when using flatpickr with locale and format\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.3.1 - Released 31 August 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce client assets for some plugins - if a view is not available for a role, its assets can be omitted.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/92d24ca5ce8480d3b0cf1067e33113f2a790030c\"\u003e\u003ccode\u003e92d24ca\u003c/code\u003e\u003c/a\u003e v1.4.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/7c945ca00b95cfe6ba65c5551e4509c220d64791\"\u003e\u003ccode\u003e7c945ca\u003c/code\u003e\u003c/a\u003e changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/9892338cc003293c90d34b4fa08e26a353cc0c3c\"\u003e\u003ccode\u003e9892338\u003c/code\u003e\u003c/a\u003e remove ts type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8154fd730a7a3c868ad49c5320147342305cc88b\"\u003e\u003ccode\u003e8154fd7\u003c/code\u003e\u003c/a\u003e if list col showif has no fields or row, use to eval if column should be show...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/09c87004014416854abce524ec7345e1c1b7db01\"\u003e\u003ccode\u003e09c8700\u003c/code\u003e\u003c/a\u003e offline changes var name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/17c73c5af56f45e5e9da8ddbcf9b6e0e9d13e6e8\"\u003e\u003ccode\u003e17c73c5\u003c/code\u003e\u003c/a\u003e loggedIn import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8ce8cd8768920534188650eea6f8b0d2643205ba\"\u003e\u003ccode\u003e8ce8cd8\u003c/code\u003e\u003c/a\u003e Fix non escaped table name (\u003ca href=\"https://redirect.github.com/saltcorn/saltcorn/issues/4052\"\u003e#4052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/26ef9291922abcfdf2d32594f398dbdcb4ee94b1\"\u003e\u003ccode\u003e26ef929\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/fb46c57d82c16cf5e161f4b3f08b1f7dbe38e1ae\"\u003e\u003ccode\u003efb46c57\u003c/code\u003e\u003c/a\u003e fix branch name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/55d489cebe26ed61518aab98038a4d87437e7189\"\u003e\u003ccode\u003e55d489c\u003c/code\u003e\u003c/a\u003e CI on stable branches\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/saltcorn/saltcorn/compare/v1.1.4-alpha.3...v1.4.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@saltcorn/data` from 1.1.4-alpha.3 to 1.4.5\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/saltcorn/saltcorn/blob/v1.4.5/CHANGELOG.md\"\u003e\u003ccode\u003e@​saltcorn/data\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.4.5 - Released 5 April 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: Prevent malicious payloads from traversing paths in sync endpoints\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.1 - Released 19 November 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eDropdown option for List header filters - mutually exclusive with togglable header filters. Filters are activated with a hidden (revealed on hover) dropdown menu.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eBug fixes backported from 1.5.0 branch\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.0 - Released 24 October 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eWhen PageLoad triggers return directives (\u003ccode\u003enotify\u003c/code\u003e, \u003ccode\u003eeval_js\u003c/code\u003e etc.) these are now run on the the\nclient page.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWhen Table.deleteRows is called without a user argument, it implicitly has admin access, to make\nit consistent with other methods\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSome initial and limited support for composite primary keys in discovered and external tables.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einsert_any_row action:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003enow accepts a list of rows in its row expression and will insert all of them.\u003c/li\u003e\n\u003cli\u003eif the primary key value is set in the row expression, it will upsert the row (update if a row with this primary key value exists, otherwise insert)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eActions now have an option to run asynchronously from the builder action settings. If this is enabled, and dynamic updates are enabled, the action will run in the background instead of during a HTTP request. This is more robust for long-running actions; there should be no difference in user experience.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eprogress_bar\u003c/code\u003e action: Display or update the display of a progress message. This can appear in a toast message for actions that can run in parallel; or in a blocking popup-up modal if the progress display is required to freeze the user interface.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eList view now have options for header filters, row colour by formula,  table layout setting (corresponds to table-layout CSS property) and sticky header.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFilter aggregations (count, average over a table subset) previously ignored ownership. There is now a partial implementation of the owbership restriction, however this is still incomplete for ownership formulas involving joinfields.\u003c/li\u003e\n\u003cli\u003eWhen serving HTML files that have been uploaded to the file store, the mime type is now set to text/plain (unless the user is the owner of the file) to prevent user-uploaded files performing session hijacking. This can be disabled in the securioty settings if you trust all uploaded html files and need to serve them.. MathJax and svg files are cleaned with dompurify before serving. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003cli\u003eIt was previously possibly for a logged-in user to craft a request to change their own password without supplying their old password. This is now checked. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix formula constraints to support more translations to SQL\u003c/li\u003e\n\u003cli\u003eEdit: preserve file choices on form errors.\u003c/li\u003e\n\u003cli\u003eFix format fieldview for only day Dates.\u003c/li\u003e\n\u003cli\u003eFix full screen width on containers - this conflicted with position, which it now overrides.\u003c/li\u003e\n\u003cli\u003eFix jsdoc links from code editor\u003c/li\u003e\n\u003cli\u003eFix date parsing when using flatpickr with locale and format\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.3.1 - Released 31 August 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce client assets for some plugins - if a view is not available for a role, its assets can be omitted.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/92d24ca5ce8480d3b0cf1067e33113f2a790030c\"\u003e\u003ccode\u003e92d24ca\u003c/code\u003e\u003c/a\u003e v1.4.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/7c945ca00b95cfe6ba65c5551e4509c220d64791\"\u003e\u003ccode\u003e7c945ca\u003c/code\u003e\u003c/a\u003e changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/9892338cc003293c90d34b4fa08e26a353cc0c3c\"\u003e\u003ccode\u003e9892338\u003c/code\u003e\u003c/a\u003e remove ts type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8154fd730a7a3c868ad49c5320147342305cc88b\"\u003e\u003ccode\u003e8154fd7\u003c/code\u003e\u003c/a\u003e if list col showif has no fields or row, use to eval if column should be show...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/09c87004014416854abce524ec7345e1c1b7db01\"\u003e\u003ccode\u003e09c8700\u003c/code\u003e\u003c/a\u003e offline changes var name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/17c73c5af56f45e5e9da8ddbcf9b6e0e9d13e6e8\"\u003e\u003ccode\u003e17c73c5\u003c/code\u003e\u003c/a\u003e loggedIn import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8ce8cd8768920534188650eea6f8b0d2643205ba\"\u003e\u003ccode\u003e8ce8cd8\u003c/code\u003e\u003c/a\u003e Fix non escaped table name (\u003ca href=\"https://redirect.github.com/saltcorn/saltcorn/issues/4052\"\u003e#4052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/26ef9291922abcfdf2d32594f398dbdcb4ee94b1\"\u003e\u003ccode\u003e26ef929\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/fb46c57d82c16cf5e161f4b3f08b1f7dbe38e1ae\"\u003e\u003ccode\u003efb46c57\u003c/code\u003e\u003c/a\u003e fix branch name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/55d489cebe26ed61518aab98038a4d87437e7189\"\u003e\u003ccode\u003e55d489c\u003c/code\u003e\u003c/a\u003e CI on stable branches\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/saltcorn/saltcorn/compare/v1.1.4-alpha.3...v1.4.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@saltcorn/data` from 1.1.4-alpha.3 to 1.4.5\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/saltcorn/saltcorn/blob/v1.4.5/CHANGELOG.md\"\u003e\u003ccode\u003e@​saltcorn/data\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.4.5 - Released 5 April 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: Prevent malicious payloads from traversing paths in sync endpoints\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.1 - Released 19 November 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eDropdown option for List header filters - mutually exclusive with togglable header filters. Filters are activated with a hidden (revealed on hover) dropdown menu.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eBug fixes backported from 1.5.0 branch\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.0 - Released 24 October 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eWhen PageLoad triggers return directives (\u003ccode\u003enotify\u003c/code\u003e, \u003ccode\u003eeval_js\u003c/code\u003e etc.) these are now run on the the\nclient page.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWhen Table.deleteRows is called without a user argument, it implicitly has admin access, to make\nit consistent with other methods\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSome initial and limited support for composite primary keys in discovered and external tables.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einsert_any_row action:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003enow accepts a list of rows in its row expression and will insert all of them.\u003c/li\u003e\n\u003cli\u003eif the primary key value is set in the row expression, it will upsert the row (update if a row with this primary key value exists, otherwise insert)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eActions now have an option to run asynchronously from the builder action settings. If this is enabled, and dynamic updates are enabled, the action will run in the background instead of during a HTTP request. This is more robust for long-running actions; there should be no difference in user experience.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eprogress_bar\u003c/code\u003e action: Display or update the display of a progress message. This can appear in a toast message for actions that can run in parallel; or in a blocking popup-up modal if the progress display is required to freeze the user interface.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eList view now have options for header filters, row colour by formula,  table layout setting (corresponds to table-layout CSS property) and sticky header.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFilter aggregations (count, average over a table subset) previously ignored ownership. There is now a partial implementation of the owbership restriction, however this is still incomplete for ownership formulas involving joinfields.\u003c/li\u003e\n\u003cli\u003eWhen serving HTML files that have been uploaded to the file store, the mime type is now set to text/plain (unless the user is the owner of the file) to prevent user-uploaded files performing session hijacking. This can be disabled in the securioty settings if you trust all uploaded html files and need to serve them.. MathJax and svg files are cleaned with dompurify before serving. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003cli\u003eIt was previously possibly for a logged-in user to craft a request to change their own password without supplying their old password. This is now checked. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix formula constraints to support more translations to SQL\u003c/li\u003e\n\u003cli\u003eEdit: preserve file choices on form errors.\u003c/li\u003e\n\u003cli\u003eFix format fieldview for only day Dates.\u003c/li\u003e\n\u003cli\u003eFix full screen width on containers - this conflicted with position, which it now overrides.\u003c/li\u003e\n\u003cli\u003eFix jsdoc links from code editor\u003c/li\u003e\n\u003cli\u003eFix date parsing when using flatpickr with locale and format\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.3.1 - Released 31 August 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce client assets for some plugins - if a view is not available for a role, its assets can be omitted.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/92d24ca5ce8480d3b0cf1067e33113f2a790030c\"\u003e\u003ccode\u003e92d24ca\u003c/code\u003e\u003c/a\u003e v1.4.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/7c945ca00b95cfe6ba65c5551e4509c220d64791\"\u003e\u003ccode\u003e7c945ca\u003c/code\u003e\u003c/a\u003e changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/9892338cc003293c90d34b4fa08e26a353cc0c3c\"\u003e\u003ccode\u003e9892338\u003c/code\u003e\u003c/a\u003e remove ts type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8154fd730a7a3c868ad49c5320147342305cc88b\"\u003e\u003ccode\u003e8154fd7\u003c/code\u003e\u003c/a\u003e if list col showif has no fields or row, use to eval if column should be show...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/09c87004014416854abce524ec7345e1c1b7db01\"\u003e\u003ccode\u003e09c8700\u003c/code\u003e\u003c/a\u003e offline changes var name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/17c73c5af56f45e5e9da8ddbcf9b6e0e9d13e6e8\"\u003e\u003ccode\u003e17c73c5\u003c/code\u003e\u003c/a\u003e loggedIn import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8ce8cd8768920534188650eea6f8b0d2643205ba\"\u003e\u003ccode\u003e8ce8cd8\u003c/code\u003e\u003c/a\u003e Fix non escaped table name (\u003ca href=\"https://redirect.github.com/saltcorn/saltcorn/issues/4052\"\u003e#4052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/26ef9291922abcfdf2d32594f398dbdcb4ee94b1\"\u003e\u003ccode\u003e26ef929\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/fb46c57d82c16cf5e161f4b3f08b1f7dbe38e1ae\"\u003e\u003ccode\u003efb46c57\u003c/code\u003e\u003c/a\u003e fix branch name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/55d489cebe26ed61518aab98038a4d87437e7189\"\u003e\u003ccode\u003e55d489c\u003c/code\u003e\u003c/a\u003e CI on stable branches\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/saltcorn/saltcorn/compare/v1.1.4-alpha.3...v1.4.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `immer` from 8.0.4 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/immerjs/immer/releases\"\u003eimmer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2021-08-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e Follow up on CVE-2020-28477 where \u003ccode\u003epath: [[\u0026quot;__proto__\u0026quot;], \u0026quot;x\u0026quot;]\u003c/code\u003e could still pollute the prototype (\u003ca href=\"https://github.com/immerjs/immer/commit/fa671e55ee9bd42ae08cc239102b665a23958237\"\u003efa671e5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.5\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.4...v9.0.5\"\u003e9.0.5\u003c/a\u003e (2021-07-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease missing dist/ folder (\u003ca href=\"https://github.com/immerjs/immer/commit/bfb8decc92ded85d035da4b0c70dd642bb25e451\"\u003ebfb8dec\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.3...v9.0.4\"\u003e9.0.4\u003c/a\u003e (2021-07-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/791\"\u003e#791\u003c/a\u003e return 'nothing' should produce undefined patch (\u003ca href=\"https://github.com/immerjs/immer/commit/5412c9f770663d0f19fe9bdaeabfa05ff3127cc9\"\u003e5412c9f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/807\"\u003e#807\u003c/a\u003e new undefined properties should end up in result object (\u003ca href=\"https://github.com/immerjs/immer/commit/dc3f66cdea53fd5a8c814924bfafa9f6b53c9c62\"\u003edc3f66c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBetter applyPatches type (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/810\"\u003e#810\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/09ac097513714130e08ff18bc7496c4fd04f6531\"\u003e09ac097\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/immerjs/immer/issues/809\"\u003e#809\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.2...v9.0.3\"\u003e9.0.3\u003c/a\u003e (2021-06-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eisPlainObject: add quick comparison between input and \u003ccode\u003eObject\u003c/code\u003e to short-circuit taxing \u003ccode\u003eFunction.toString\u003c/code\u003e invocations (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/805\"\u003e#805\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/07575f38f49babcc6014dc898e77d39e4a9347b1\"\u003e07575f3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.1...v9.0.2\"\u003e9.0.2\u003c/a\u003e (2021-04-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/785\"\u003e#785\u003c/a\u003e fix type inference for produce incorrectly inferring promise (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/786\"\u003e#786\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/6555173838f575d48a3fcb825c5a7d1953573a11\"\u003e6555173\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.0...v9.0.1\"\u003e9.0.1\u003c/a\u003e (2021-03-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/768\"\u003e#768\u003c/a\u003e \u003ccode\u003eimmerable\u003c/code\u003e field being lost during patch value cloning (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/771\"\u003e#771\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/e0b7c01c4ce039b7a68b5cb3cd97a7242962b7ab\"\u003ee0b7c01\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/fa671e55ee9bd42ae08cc239102b665a23958237\"\u003e\u003ccode\u003efa671e5\u003c/code\u003e\u003c/a\u003e fix(security): Follow up on CVE-2020-28477 where \u003ccode\u003epath: [[\u0026quot;__proto__\u0026quot;], \u0026quot;x\u0026quot;]\u003c/code\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/2e0aa95b5002dd235ac51a1e2d6ae4fc65361dbc\"\u003e\u003ccode\u003e2e0aa95\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/050522dea1d0b3810e1896d8f01c79ce89e4186c\"\u003e\u003ccode\u003e050522d\u003c/code\u003e\u003c/a\u003e chore: fix CI. maybe.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/11955103ee6d63adc819438d76ac8a8585e1c44e\"\u003e\u003ccode\u003e1195510\u003c/code\u003e\u003c/a\u003e docs: Update example-setstate.mdx (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/833\"\u003e#833\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/648d39bc72426d1772633acd48909b953d474672\"\u003e\u003ccode\u003e648d39b\u003c/code\u003e\u003c/a\u003e docs: fixing link to RFC-6902 \u0026amp; fixing typo (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/830\"\u003e#830\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/bc890f751bae6a26bd0eb61022cfea45517bc52a\"\u003e\u003ccode\u003ebc890f7\u003c/code\u003e\u003c/a\u003e docs: Update example-setstate.mdx (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/829\"\u003e#829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/16a3d0f36ceefeed7f4e7db8b4341b1d21f52636\"\u003e\u003ccode\u003e16a3d0f\u003c/code\u003e\u003c/a\u003e chore(deps): bump prismjs from 1.23.0 to 1.24.0 in /website (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/822\"\u003e#822\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/847492c42043c38674642413a69a4a6fdfe648e7\"\u003e\u003ccode\u003e847492c\u003c/code\u003e\u003c/a\u003e docs: Extended / updated documenation (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/824\"\u003e#824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/7f414838a7aa84bd55f03d31afb0ee85c6cae2f5\"\u003e\u003ccode\u003e7f41483\u003c/code\u003e\u003c/a\u003e chore: [workflows] don't release from forks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/3f9a94e9e7502001ceda15614dabf423e98c7091\"\u003e\u003ccode\u003e3f9a94e\u003c/code\u003e\u003c/a\u003e chore: let's test before publish\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/immerjs/immer/compare/v8.0.4...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/traverse` from 7.9.6 to 7.29.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/traverse\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.0 (2026-01-31)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e for your first PR!\u003c/p\u003e\n\u003ch4\u003e:rocket: New Feature\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17750\"\u003e#17750\u003c/a\u003e [7.x backport] Add attributes import declaration builder (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17663\"\u003e#17663\u003c/a\u003e [7.x backport] feat(standalone): export async transform (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17725\"\u003e#17725\u003c/a\u003e [7.x backport] feat: read standalone targets from data-targets (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17765\"\u003e#17765\u003c/a\u003e fix(parser): correctly parse type assertions in \u003ccode\u003eextends\u003c/code\u003e clause (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17723\"\u003e#17723\u003c/a\u003e [7.x backport] fix(parser): improve super type argument parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17708\"\u003e#17708\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentPath is given (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-block-scoping\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17737\"\u003e#17737\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates shadowing variable (\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17642\"\u003e#17642\u003c/a\u003e [Babel 7] Improve generator performance (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 6\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDavid (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aa8394e454337d118ac3d40bfa3ee1a3cb3f3ed2\"\u003e\u003ccode\u003eaa8394e\u003c/code\u003e\u003c/a\u003e v7.29.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/84366a8ea453814e732784db74cf2e2b6635eb6f\"\u003e\u003ccode\u003e84366a8\u003c/code\u003e\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentP...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/229eb452c5d5d2be0dc138ec2956aff7ff1057d7\"\u003e\u003ccode\u003e229eb45\u003c/code\u003e\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/905bc22b2fff23673eabe467815c67b29bf8bba2\"\u003e\u003ccode\u003e905bc22\u003c/code\u003e\u003c/a\u003e fix: lint errors in main branch (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17612\"\u003e#17612\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a03e2b63ae530674e866b60350b7eb4a5fcb5f59\"\u003e\u003ccode\u003ea03e2b6\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003epath.evaluate\u003c/code\u003e correctly returns \u003ccode\u003econfident\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17584\"\u003e#17584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aac2c37e11ad58905f7f9606103074e80bacbbcd\"\u003e\u003ccode\u003eaac2c37\u003c/code\u003e\u003c/a\u003e chore: Use Gulpfile.mts (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17579\"\u003e#17579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/65c4a6b3ee0e1d32801529e841572bb22534e1f3\"\u003e\u003ccode\u003e65c4a6b\u003c/code\u003e\u003c/a\u003e [Babel 8] fix: Improve \u003ccode\u003etraverse\u003c/code\u003e types (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17574\"\u003e#17574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c92c4919771105140015167f25f7bacac77c90d9\"\u003e\u003ccode\u003ec92c491\u003c/code\u003e\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17589\"\u003e#17589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.0/packages/babel-traverse\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/traverse\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `picomatch` from 2.2.2 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/releases\"\u003epicomatch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.2\u003c/h2\u003e\n\u003cp\u003eThis is a security release fixing several security relevant issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: exception when glob pattern contains constructor by \u003ca href=\"https://github.com/Jason3S\"\u003e\u003ccode\u003e@​Jason3S\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/micromatch/picomatch/pull/144\"\u003emicromatch/picomatch#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj\"\u003eCVE-2026-33671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p\"\u003eCVE-2026-33672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ehttps://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e2.3.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes bug when a pattern containing an expression after the closing parenthesis (\u003ccode\u003e/!(*.d).{ts,tsx}\u003c/code\u003e) was incorrectly converted to regexp (\u003ca href=\"https://github.com/micromatch/picomatch/commit/9f241ef\"\u003e9f241ef\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSome documentation improvements (\u003ca href=\"https://github.com/micromatch/picomatch/commit/f81d236\"\u003ef81d236\u003c/a\u003e, \u003ca href=\"https://github.com/micromatch/picomatch/commit/421e0e7\"\u003e421e0e7\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.2.3\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not skip pattern seperator for square brackets (\u003ca href=\"https://github.com/micromatch/picomatch/commit/fb08a30\"\u003efb08a30\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eSet negatedExtGlob also if it does not span the whole pattern (\u003ca href=\"https://github.com/micromatch/picomatch/commit/032e3f5\"\u003e032e3f5\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md\"\u003epicomatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eAll notable changes to this project will be documented in this file.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e4.0.0 (2024-02-07)\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad text values in parse \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/126\"\u003e#126\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/connor4312\"\u003e\u003ccode\u003e@​connor4312\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove process global to work outside of node \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/129\"\u003e#129\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/styfle\"\u003e\u003ccode\u003e@​styfle\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sideEffects to package.json \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/128\"\u003e#128\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/frandiox\"\u003e\u003ccode\u003e@​frandiox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003eos\u003c/code\u003e, make compatible browser environment. See \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/124\"\u003e#124\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/gwsbhqt\"\u003e\u003ccode\u003e@​gwsbhqt\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.1\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/81cba8d4b767cab3cb29d26eb4f691eed75b73b2\"\u003e\u003ccode\u003e81cba8d\u003c/code\u003e\u003c/a\u003e Publish 2.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/fc1f6b69006e9435caf8fb40d8aff378bc0b7bce\"\u003e\u003ccode\u003efc1f6b6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/eec17aee5428a7249e9ca5adbb8a0d28fa29619b\"\u003e\u003ccode\u003eeec17ae\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/78f8ca4362d9e66cadea97b93e292f10096452ed\"\u003e\u003ccode\u003e78f8ca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/156\"\u003e#156\u003c/a\u003e from micromatch/backport-144\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/3f4f10eaa65bf3a52e8f2999674cd27e11fa3c9b\"\u003e\u003ccode\u003e3f4f10e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/144\"\u003e#144\u003c/a\u003e from Jason3S/jdent-object-properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/5467a5a9638472610de4f30709991b9a56bb5613\"\u003e\u003ccode\u003e5467a5a\u003c/code\u003e\u003c/a\u003e 2.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/9f241efedc15a21bcec1edafd43ee773ceb4bc35\"\u003e\u003ccode\u003e9f241ef\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/102\"\u003e#102\u003c/a\u003e from micromatch/ISSUE-93_incorrect_extglob_expanding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/ac3cb660ca76764627aa825676df59378dd60bcd\"\u003e\u003ccode\u003eac3cb66\u003c/code\u003e\u003c/a\u003e fix: support stars in negation extglobs with expression after closing parenth...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/719d348d8a01cf23c6c10568191c1ad5a3fc33e3\"\u003e\u003ccode\u003e719d348\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/85\"\u003e#85\u003c/a\u003e from XhmikosR/codeql\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/ac74e57b38a0d16de8e1752a62003e49c1622cec\"\u003e\u003ccode\u003eac74e57\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/91\"\u003e#91\u003c/a\u003e from XhmikosR/patch-1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.2.2...2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~danez\"\u003edanez\u003c/a\u003e, a new releaser for picomatch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `braces` from 2.3.2 to 3.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/braces/blob/master/CHANGELOG.md\"\u003ebraces's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003eAll notable changes to this project will be documented in this file.\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e[3.0.0] - 2018-04-08\u003c/h2\u003e\n\u003cp\u003ev3.0 is a complete refactor, resulting in a faster, smaller codebase, with fewer deps, and a more accurate parser and compiler.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe undocumented \u003ccode\u003e.makeRe\u003c/code\u003e method was removed\u003c/li\u003e\n\u003cli\u003eRequire Node.js \u0026gt;= 8.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNon-breaking changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCaching was removed\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/micromatch/braces/commits/3.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/4419b6e73f21516c6d53ca4165cb7abb3d79ae24\"\u003e\u003ccode\u003e4419b6e\u003c/code\u003e\u003c/a\u003e 5.1.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/383ce59133bc582fce638f46cea59edf6b224753\"\u003e\u003ccode\u003e383ce59\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b02ef18f66329dc1d7bc8e37863a37b317c5b74e\"\u003e\u003ccode\u003eb02ef18\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/e92ae291a1e512f2d7ae13d6797b02315f68a40c\"\u003e\u003ccode\u003ee92ae29\u003c/code\u003e\u003c/a\u003e 5.1.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/79e44472e457ca43a3f2acebe19288a436db28c4\"\u003e\u003ccode\u003e79e4447\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/85ec0ff1bb34f2b200990140f4f9bdbaa8fb99aa\"\u003e\u003ccode\u003e85ec0ff\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/647146e67c1f47287a4b8d834e28c671c712d639\"\u003e\u003ccode\u003e647146e\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/85646c8f2739fdb0bc3b744606117a9d63f97c74\"\u003e\u003ccode\u003e85646c8\u003c/code\u003e\u003c/a\u003e 5.1.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/977c2d874aff7d416bf91c92b6aef7ab1f926f9b\"\u003e\u003ccode\u003e977c2d8\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/421ad1288bac5ef85e0f1b47155d85a69d753b79\"\u003e\u003ccode\u003e421ad12\u003c/code\u003e\u003c/a\u003e update test expectations for coalesced consecutive stars\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `y18n` from 4.0.0 to 5.0.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yargs/y18n/releases\"\u003ey18n's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ey18n y18n-v4.0.3\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e 4.x.x should not enforce Node 10 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/126\"\u003e#126\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/1e21a536e9135d8403a47be88922157a706b7cde\"\u003e1e21a53\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ey18n y18n-v4.0.2\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e ensure entry exists for backport (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/120\"\u003e#120\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/b22c0df59d0851d7be9fd1d51f6a5ee974c9fc94\"\u003eb22c0df\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yargs/y18n/blob/master/CHANGELOG.md\"\u003ey18n's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.7...v5.0.8\"\u003e5.0.8\u003c/a\u003e (2021-04-07)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeno:\u003c/strong\u003e force modern release for Deno (\u003ca href=\"https://www.github.com/yargs/y18n/commit/b1c215aed714bee5830e76de3e335504dc2c4dab\"\u003eb1c215a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https:/...\n\n_Description has been truncated_","html_url":"https://github.com/protonalialol/saltcorn/pull/22","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/protonalialol%2Fsaltcorn/issues/22","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/22/packages"},{"uuid":"4241398338","node_id":"PR_kwDOOPPMvM7RjcP0","number":21,"state":"closed","title":"Bump the npm_and_yarn group across 11 directories with 23 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-15T23:09:10.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-10T19:45:57.000Z","updated_at":"2026-04-15T23:09:12.000Z","time_to_close":444193,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":23,"packages":[{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"formidable","old_version":"3.5.2","new_version":"3.5.4","repository_url":"https://github.com/node-formidable/formidable"},{"name":"glob","old_version":"10.4.5","new_version":"13.0.6","repository_url":"https://github.com/isaacs/node-glob"},{"name":"minimatch","old_version":"5.1.6","new_version":"5.1.9","repository_url":"https://github.com/isaacs/minimatch"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"minimatch","old_version":"9.0.5","new_version":"9.0.9","repository_url":"https://github.com/isaacs/minimatch"},{"name":"form-data","old_version":"4.0.2","new_version":"4.0.5","repository_url":"https://github.com/form-data/form-data"},{"name":"@saltcorn/data","old_version":"1.1.4-alpha.3","new_version":"1.4.5","repository_url":"https://github.com/saltcorn/saltcorn"},{"name":"pbkdf2","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/browserify/pbkdf2"},{"name":"serialize-javascript","old_version":"6.0.2","new_version":"removed","repository_url":"https://github.com/yahoo/serialize-javascript"},{"name":"@saltcorn/server","old_version":"1.1.4-alpha.3","new_version":"1.5.5","repository_url":"https://github.com/saltcorn/saltcorn"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 1 update in the /packages/filemanager directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 1 update in the /packages/plugins-loader directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-builder directory: [lodash](https://github.com/lodash/lodash).\nBumps the npm_and_yarn group with 10 updates in the /packages/saltcorn-cli directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.2` | `3.5.4` |\n| [glob](https://github.com/isaacs/node-glob) | `10.4.5` | `13.0.6` |\n| [minimatch](https://github.com/isaacs/minimatch) | `5.1.6` | `5.1.9` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `9.0.5` | `9.0.9` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.2` | `4.0.5` |\n| [@saltcorn/data](https://github.com/saltcorn/saltcorn) | `1.1.4-alpha.3` | `1.4.5` |\n| [pbkdf2](https://github.com/browserify/pbkdf2) | `3.1.2` | `3.1.5` |\n| [serialize-javascript](https://github.com/yahoo/serialize-javascript) | `6.0.2` | `removed` |\n| [@saltcorn/server](https://github.com/saltcorn/saltcorn) | `1.1.4-alpha.3` | `1.5.5` |\n\nBumps the npm_and_yarn group with 3 updates in the /packages/saltcorn-data directory: [webpack](https://github.com/webpack/webpack), [axios](https://github.com/axios/axios) and [nodemailer](https://github.com/nodemailer/nodemailer).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-markup directory: [webpack](https://github.com/webpack/webpack).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-mobile-app directory: [webpack](https://github.com/webpack/webpack).\nBumps the npm_and_yarn group with 3 updates in the /packages/saltcorn-mobile-builder directory: [webpack](https://github.com/webpack/webpack), [@saltcorn/data](https://github.com/saltcorn/saltcorn) and [@saltcorn/server](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 2 updates in the /packages/saltcorn-random-tests directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn) and [@saltcorn/server](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-sbadmin2 directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 3 updates in the /packages/server directory: [underscore](https://github.com/jashkenas/underscore), [multer](https://github.com/expressjs/multer) and [@saltcorn/data](https://github.com/saltcorn/saltcorn).\n\nUpdates `svelte` from 4.2.20 to 5.55.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/releases\"\u003esvelte's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esvelte@5.55.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: ensure proper HMR updates for dynamic components (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18079\"\u003e#18079\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly calculate \u003ccode\u003e@const\u003c/code\u003e blockers (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18039\"\u003e#18039\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: freeze deriveds once their containing effects are destroyed (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17921\"\u003e#17921\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: defer error boundary rendering in forks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18076\"\u003e#18076\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: avoid false positives for reactivity loss warning (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18088\"\u003e#18088\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.55.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: invalidate \u003ccode\u003e@const\u003c/code\u003e tags based on visible references in legacy mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18041\"\u003e#18041\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle parens in template expressions more robustly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18075\"\u003e#18075\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: disallow \u003ccode\u003e--\u003c/code\u003e in \u003ccode\u003eidPrefix\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18038\"\u003e#18038\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correct types for \u003ccode\u003eontoggle\u003c/code\u003e on \u003ccode\u003e\u0026lt;details\u0026gt;\u003c/code\u003e elements (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18063\"\u003e#18063\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't override \u003ccode\u003e$destroy/set/on\u003c/code\u003e instance methods in dev mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18034\"\u003e#18034\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: unskip branches of earlier batches after commit (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18048\"\u003e#18048\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: never set derived.v inside fork (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18037\"\u003e#18037\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: skip rebase logic in non-async mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18040\"\u003e#18040\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't reset status of uninitialized deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18054\"\u003e#18054\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.55.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly handle bindings on the server (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18009\"\u003e#18009\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent hydration error on async \u003ccode\u003e{@html ...}\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17999\"\u003e#17999\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: cleanup \u003ccode\u003esuperTypeParameters\u003c/code\u003e in \u003ccode\u003eClassDeclarations\u003c/code\u003e/\u003ccode\u003eClassExpression\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18015\"\u003e#18015\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: improve duplicate module import error message (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18016\"\u003e#18016\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: reschedule new effects in prior batches (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18021\"\u003e#18021\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.55.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md\"\u003esvelte's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.55.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: ensure proper HMR updates for dynamic components (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18079\"\u003e#18079\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly calculate \u003ccode\u003e@const\u003c/code\u003e blockers (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18039\"\u003e#18039\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: freeze deriveds once their containing effects are destroyed (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17921\"\u003e#17921\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: defer error boundary rendering in forks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18076\"\u003e#18076\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: avoid false positives for reactivity loss warning (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18088\"\u003e#18088\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.55.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: invalidate \u003ccode\u003e@const\u003c/code\u003e tags based on visible references in legacy mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18041\"\u003e#18041\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle parens in template expressions more robustly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18075\"\u003e#18075\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: disallow \u003ccode\u003e--\u003c/code\u003e in \u003ccode\u003eidPrefix\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18038\"\u003e#18038\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correct types for \u003ccode\u003eontoggle\u003c/code\u003e on \u003ccode\u003e\u0026lt;details\u0026gt;\u003c/code\u003e elements (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18063\"\u003e#18063\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't override \u003ccode\u003e$destroy/set/on\u003c/code\u003e instance methods in dev mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18034\"\u003e#18034\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: unskip branches of earlier batches after commit (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18048\"\u003e#18048\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: never set derived.v inside fork (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18037\"\u003e#18037\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: skip rebase logic in non-async mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18040\"\u003e#18040\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't reset status of uninitialized deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18054\"\u003e#18054\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.55.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly handle bindings on the server (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18009\"\u003e#18009\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent hydration error on async \u003ccode\u003e{@html ...}\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17999\"\u003e#17999\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: cleanup \u003ccode\u003esuperTypeParameters\u003c/code\u003e in \u003ccode\u003eClassDeclarations\u003c/code\u003e/\u003ccode\u003eClassExpression\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18015\"\u003e#18015\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: improve duplicate module import error message (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18016\"\u003e#18016\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: reschedule new effects in prior batches (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18021\"\u003e#18021\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/4a50e8ea3b7db1d8cd752b825032e4ce2878524b\"\u003e\u003ccode\u003e4a50e8e\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18085\"\u003e#18085\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/15588f5fbfe736f65e189e56047ee08678f5509f\"\u003e\u003ccode\u003e15588f5\u003c/code\u003e\u003c/a\u003e fix: avoid false positives for reactivity loss warning (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18088\"\u003e#18088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0e9e76f29262b5f64ac7a5d4db37ec83c9181634\"\u003e\u003ccode\u003e0e9e76f\u003c/code\u003e\u003c/a\u003e fix: freeze deriveds once their containing effects are destroyed (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17921\"\u003e#17921\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/3937ec03bdaae8d9c097f4f015560ee4b9e32cf3\"\u003e\u003ccode\u003e3937ec0\u003c/code\u003e\u003c/a\u003e fix: correctly calculate \u003ccode\u003e@const\u003c/code\u003e blockers (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18039\"\u003e#18039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/7be1a0247f1ea84db2e951ab27716c68de5b0650\"\u003e\u003ccode\u003e7be1a02\u003c/code\u003e\u003c/a\u003e fix: ensure proper HMR updates for dynamic components (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18079\"\u003e#18079\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/a4ce7760705bc58454e954488719e2ef6d17cafa\"\u003e\u003ccode\u003ea4ce776\u003c/code\u003e\u003c/a\u003e fix: defer error boundary rendering in forks (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18076\"\u003e#18076\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/2e29c87cc9f41ce3cab70ce3cff0c6dc85b009f5\"\u003e\u003ccode\u003e2e29c87\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18036\"\u003e#18036\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/6b653b8d17c80b16659c5238875977f0941490c2\"\u003e\u003ccode\u003e6b653b8\u003c/code\u003e\u003c/a\u003e chore: simplify parser (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18077\"\u003e#18077\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/8966601dcd14582cd46d4fbb7c5cf1b444292255\"\u003e\u003ccode\u003e8966601\u003c/code\u003e\u003c/a\u003e fix: handle parens in template expressions more robustly (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18075\"\u003e#18075\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0395ef0df7ff12c4b633b650c5f2db512d382836\"\u003e\u003ccode\u003e0395ef0\u003c/code\u003e\u003c/a\u003e fix: unskip branches of earlier batches after commit (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18048\"\u003e#18048\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sveltejs/svelte/commits/svelte@5.55.3/packages/svelte\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for svelte since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@saltcorn/data` from 1.1.4-alpha.3 to 1.4.5\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/saltcorn/saltcorn/blob/v1.4.5/CHANGELOG.md\"\u003e\u003ccode\u003e@​saltcorn/data\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.4.5 - Released 5 April 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: Prevent malicious payloads from traversing paths in sync endpoints\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.1 - Released 19 November 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eDropdown option for List header filters - mutually exclusive with togglable header filters. Filters are activated with a hidden (revealed on hover) dropdown menu.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eBug fixes backported from 1.5.0 branch\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.0 - Released 24 October 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eWhen PageLoad triggers return directives (\u003ccode\u003enotify\u003c/code\u003e, \u003ccode\u003eeval_js\u003c/code\u003e etc.) these are now run on the the\nclient page.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWhen Table.deleteRows is called without a user argument, it implicitly has admin access, to make\nit consistent with other methods\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSome initial and limited support for composite primary keys in discovered and external tables.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einsert_any_row action:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003enow accepts a list of rows in its row expression and will insert all of them.\u003c/li\u003e\n\u003cli\u003eif the primary key value is set in the row expression, it will upsert the row (update if a row with this primary key value exists, otherwise insert)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eActions now have an option to run asynchronously from the builder action settings. If this is enabled, and dynamic updates are enabled, the action will run in the background instead of during a HTTP request. This is more robust for long-running actions; there should be no difference in user experience.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eprogress_bar\u003c/code\u003e action: Display or update the display of a progress message. This can appear in a toast message for actions that can run in parallel; or in a blocking popup-up modal if the progress display is required to freeze the user interface.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eList view now have options for header filters, row colour by formula,  table layout setting (corresponds to table-layout CSS property) and sticky header.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFilter aggregations (count, average over a table subset) previously ignored ownership. There is now a partial implementation of the owbership restriction, however this is still incomplete for ownership formulas involving joinfields.\u003c/li\u003e\n\u003cli\u003eWhen serving HTML files that have been uploaded to the file store, the mime type is now set to text/plain (unless the user is the owner of the file) to prevent user-uploaded files performing session hijacking. This can be disabled in the securioty settings if you trust all uploaded html files and need to serve them.. MathJax and svg files are cleaned with dompurify before serving. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003cli\u003eIt was previously possibly for a logged-in user to craft a request to change their own password without supplying their old password. This is now checked. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix formula constraints to support more translations to SQL\u003c/li\u003e\n\u003cli\u003eEdit: preserve file choices on form errors.\u003c/li\u003e\n\u003cli\u003eFix format fieldview for only day Dates.\u003c/li\u003e\n\u003cli\u003eFix full screen width on containers - this conflicted with position, which it now overrides.\u003c/li\u003e\n\u003cli\u003eFix jsdoc links from code editor\u003c/li\u003e\n\u003cli\u003eFix date parsing when using flatpickr with locale and format\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.3.1 - Released 31 August 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce client assets for some plugins - if a view is not available for a role, its assets can be omitted.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/92d24ca5ce8480d3b0cf1067e33113f2a790030c\"\u003e\u003ccode\u003e92d24ca\u003c/code\u003e\u003c/a\u003e v1.4.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/7c945ca00b95cfe6ba65c5551e4509c220d64791\"\u003e\u003ccode\u003e7c945ca\u003c/code\u003e\u003c/a\u003e changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/9892338cc003293c90d34b4fa08e26a353cc0c3c\"\u003e\u003ccode\u003e9892338\u003c/code\u003e\u003c/a\u003e remove ts type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8154fd730a7a3c868ad49c5320147342305cc88b\"\u003e\u003ccode\u003e8154fd7\u003c/code\u003e\u003c/a\u003e if list col showif has no fields or row, use to eval if column should be show...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/09c87004014416854abce524ec7345e1c1b7db01\"\u003e\u003ccode\u003e09c8700\u003c/code\u003e\u003c/a\u003e offline changes var name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/17c73c5af56f45e5e9da8ddbcf9b6e0e9d13e6e8\"\u003e\u003ccode\u003e17c73c5\u003c/code\u003e\u003c/a\u003e loggedIn import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8ce8cd8768920534188650eea6f8b0d2643205ba\"\u003e\u003ccode\u003e8ce8cd8\u003c/code\u003e\u003c/a\u003e Fix non escaped table name (\u003ca href=\"https://redirect.github.com/saltcorn/saltcorn/issues/4052\"\u003e#4052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/26ef9291922abcfdf2d32594f398dbdcb4ee94b1\"\u003e\u003ccode\u003e26ef929\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/fb46c57d82c16cf5e161f4b3f08b1f7dbe38e1ae\"\u003e\u003ccode\u003efb46c57\u003c/code\u003e\u003c/a\u003e fix branch name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/55d489cebe26ed61518aab98038a4d87437e7189\"\u003e\u003ccode\u003e55d489c\u003c/code\u003e\u003c/a\u003e CI on stable branches\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/saltcorn/saltcorn/compare/v1.1.4-alpha.3...v1.4.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `immer` from 8.0.4 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/immerjs/immer/releases\"\u003eimmer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2021-08-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e Follow up on CVE-2020-28477 where \u003ccode\u003epath: [[\u0026quot;__proto__\u0026quot;], \u0026quot;x\u0026quot;]\u003c/code\u003e could still pollute the prototype (\u003ca href=\"https://github.com/immerjs/immer/commit/fa671e55ee9bd42ae08cc239102b665a23958237\"\u003efa671e5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.5\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.4...v9.0.5\"\u003e9.0.5\u003c/a\u003e (2021-07-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease missing dist/ folder (\u003ca href=\"https://github.com/immerjs/immer/commit/bfb8decc92ded85d035da4b0c70dd642bb25e451\"\u003ebfb8dec\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.3...v9.0.4\"\u003e9.0.4\u003c/a\u003e (2021-07-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/791\"\u003e#791\u003c/a\u003e return 'nothing' should produce undefined patch (\u003ca href=\"https://github.com/immerjs/immer/commit/5412c9f770663d0f19fe9bdaeabfa05ff3127cc9\"\u003e5412c9f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/807\"\u003e#807\u003c/a\u003e new undefined properties should end up in result object (\u003ca href=\"https://github.com/immerjs/immer/commit/dc3f66cdea53fd5a8c814924bfafa9f6b53c9c62\"\u003edc3f66c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBetter applyPatches type (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/810\"\u003e#810\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/09ac097513714130e08ff18bc7496c4fd04f6531\"\u003e09ac097\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/immerjs/immer/issues/809\"\u003e#809\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.2...v9.0.3\"\u003e9.0.3\u003c/a\u003e (2021-06-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eisPlainObject: add quick comparison between input and \u003ccode\u003eObject\u003c/code\u003e to short-circuit taxing \u003ccode\u003eFunction.toString\u003c/code\u003e invocations (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/805\"\u003e#805\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/07575f38f49babcc6014dc898e77d39e4a9347b1\"\u003e07575f3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.1...v9.0.2\"\u003e9.0.2\u003c/a\u003e (2021-04-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/785\"\u003e#785\u003c/a\u003e fix type inference for produce incorrectly inferring promise (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/786\"\u003e#786\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/6555173838f575d48a3fcb825c5a7d1953573a11\"\u003e6555173\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.0...v9.0.1\"\u003e9.0.1\u003c/a\u003e (2021-03-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/768\"\u003e#768\u003c/a\u003e \u003ccode\u003eimmerable\u003c/code\u003e field being lost during patch value cloning (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/771\"\u003e#771\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/e0b7c01c4ce039b7a68b5cb3cd97a7242962b7ab\"\u003ee0b7c01\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/fa671e55ee9bd42ae08cc239102b665a23958237\"\u003e\u003ccode\u003efa671e5\u003c/code\u003e\u003c/a\u003e fix(security): Follow up on CVE-2020-28477 where \u003ccode\u003epath: [[\u0026quot;__proto__\u0026quot;], \u0026quot;x\u0026quot;]\u003c/code\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/2e0aa95b5002dd235ac51a1e2d6ae4fc65361dbc\"\u003e\u003ccode\u003e2e0aa95\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/050522dea1d0b3810e1896d8f01c79ce89e4186c\"\u003e\u003ccode\u003e050522d\u003c/code\u003e\u003c/a\u003e chore: fix CI. maybe.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/11955103ee6d63adc819438d76ac8a8585e1c44e\"\u003e\u003ccode\u003e1195510\u003c/code\u003e\u003c/a\u003e docs: Update example-setstate.mdx (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/833\"\u003e#833\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/648d39bc72426d1772633acd48909b953d474672\"\u003e\u003ccode\u003e648d39b\u003c/code\u003e\u003c/a\u003e docs: fixing link to RFC-6902 \u0026amp; fixing typo (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/830\"\u003e#830\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/bc890f751bae6a26bd0eb61022cfea45517bc52a\"\u003e\u003ccode\u003ebc890f7\u003c/code\u003e\u003c/a\u003e docs: Update example-setstate.mdx (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/829\"\u003e#829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/16a3d0f36ceefeed7f4e7db8b4341b1d21f52636\"\u003e\u003ccode\u003e16a3d0f\u003c/code\u003e\u003c/a\u003e chore(deps): bump prismjs from 1.23.0 to 1.24.0 in /website (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/822\"\u003e#822\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/847492c42043c38674642413a69a4a6fdfe648e7\"\u003e\u003ccode\u003e847492c\u003c/code\u003e\u003c/a\u003e docs: Extended / updated documenation (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/824\"\u003e#824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/7f414838a7aa84bd55f03d31afb0ee85c6cae2f5\"\u003e\u003ccode\u003e7f41483\u003c/code\u003e\u003c/a\u003e chore: [workflows] don't release from forks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/3f9a94e9e7502001ceda15614dabf423e98c7091\"\u003e\u003ccode\u003e3f9a94e\u003c/code\u003e\u003c/a\u003e chore: let's test before publish\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/immerjs/immer/compare/v8.0.4...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/traverse` from 7.9.6 to 7.29.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/traverse\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.0 (2026-01-31)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e for your first PR!\u003c/p\u003e\n\u003ch4\u003e:rocket: New Feature\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17750\"\u003e#17750\u003c/a\u003e [7.x backport] Add attributes import declaration builder (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17663\"\u003e#17663\u003c/a\u003e [7.x backport] feat(standalone): export async transform (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17725\"\u003e#17725\u003c/a\u003e [7.x backport] feat: read standalone targets from data-targets (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17765\"\u003e#17765\u003c/a\u003e fix(parser): correctly parse type assertions in \u003ccode\u003eextends\u003c/code\u003e clause (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17723\"\u003e#17723\u003c/a\u003e [7.x backport] fix(parser): improve super type argument parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17708\"\u003e#17708\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentPath is given (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-block-scoping\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17737\"\u003e#17737\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates shadowing variable (\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17642\"\u003e#17642\u003c/a\u003e [Babel 7] Improve generator performance (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 6\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDavid (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aa8394e454337d118ac3d40bfa3ee1a3cb3f3ed2\"\u003e\u003ccode\u003eaa8394e\u003c/code\u003e\u003c/a\u003e v7.29.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/84366a8ea453814e732784db74cf2e2b6635eb6f\"\u003e\u003ccode\u003e84366a8\u003c/code\u003e\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentP...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/229eb452c5d5d2be0dc138ec2956aff7ff1057d7\"\u003e\u003ccode\u003e229eb45\u003c/code\u003e\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/905bc22b2fff23673eabe467815c67b29bf8bba2\"\u003e\u003ccode\u003e905bc22\u003c/code\u003e\u003c/a\u003e fix: lint errors in main branch (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17612\"\u003e#17612\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a03e2b63ae530674e866b60350b7eb4a5fcb5f59\"\u003e\u003ccode\u003ea03e2b6\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003epath.evaluate\u003c/code\u003e correctly returns \u003ccode\u003econfident\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17584\"\u003e#17584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aac2c37e11ad58905f7f9606103074e80bacbbcd\"\u003e\u003ccode\u003eaac2c37\u003c/code\u003e\u003c/a\u003e chore: Use Gulpfile.mts (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17579\"\u003e#17579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/65c4a6b3ee0e1d32801529e841572bb22534e1f3\"\u003e\u003ccode\u003e65c4a6b\u003c/code\u003e\u003c/a\u003e [Babel 8] fix: Improve \u003ccode\u003etraverse\u003c/code\u003e types (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17574\"\u003e#17574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c92c4919771105140015167f25f7bacac77c90d9\"\u003e\u003ccode\u003ec92c491\u003c/code\u003e\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17589\"\u003e#17589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.0/packages/babel-traverse\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/traverse\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `picomatch` from 2.2.2 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/releases\"\u003epicomatch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.2\u003c/h2\u003e\n\u003cp\u003eThis is a security release fixing several security relevant issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: exception when glob pattern contains constructor by \u003ca href=\"https://github.com/Jason3S\"\u003e\u003ccode\u003e@​Jason3S\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/micromatch/picomatch/pull/144\"\u003emicromatch/picomatch#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj\"\u003eCVE-2026-33671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p\"\u003eCVE-2026-33672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ehttps://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e2.3.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes bug when a pattern containing an expression after the closing parenthesis (\u003ccode\u003e/!(*.d).{ts,tsx}\u003c/code\u003e) was incorrectly converted to regexp (\u003ca href=\"https://github.com/micromatch/picomatch/commit/9f241ef\"\u003e9f241ef\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSome documentation improvements (\u003ca href=\"https://github.com/micromatch/picomatch/commit/f81d236\"\u003ef81d236\u003c/a\u003e, \u003ca href=\"https://github.com/micromatch/picomatch/commit/421e0e7\"\u003e421e0e7\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.2.3\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not skip pattern seperator for square brackets (\u003ca href=\"https://github.com/micromatch/picomatch/commit/fb08a30\"\u003efb08a30\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eSet negatedExtGlob also if it does not span the whole pattern (\u003ca href=\"https://github.com/micromatch/picomatch/commit/032e3f5\"\u003e032e3f5\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md\"\u003epicomatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eAll notable changes to this project will be documented in this file.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e4.0.0 (2024-02-07)\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad text values in parse \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/126\"\u003e#126\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/connor4312\"\u003e\u003ccode\u003e@​connor4312\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove process global to work outside of node \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/129\"\u003e#129\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/styfle\"\u003e\u003ccode\u003e@​styfle\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sideEffects to package.json \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/128\"\u003e#128\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/frandiox\"\u003e\u003ccode\u003e@​frandiox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003eos\u003c/code\u003e, make compatible browser environment. See \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/124\"\u003e#124\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/gwsbhqt\"\u003e\u003ccode\u003e@​gwsbhqt\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.1\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/81cba8d4b767cab3cb29d26eb4f691eed75b73b2\"\u003e\u003ccode\u003e81cba8d\u003c/code\u003e\u003c/a\u003e Publish 2.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/fc1f6b69006e9435caf8fb40d8aff378bc0b7bce\"\u003e\u003ccode\u003efc1f6b6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/eec17aee5428a7249e9ca5adbb8a0d28fa29619b\"\u003e\u003ccode\u003eeec17ae\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/78f8ca4362d9e66cadea97b93e292f10096452ed\"\u003e\u003ccode\u003e78f8ca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/156\"\u003e#156\u003c/a\u003e from micromatch/backport-144\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/3f4f10eaa65bf3a52e8f2999674cd27e11fa3c9b\"\u003e\u003ccode\u003e3f4f10e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/144\"\u003e#144\u003c/a\u003e from Jason3S/jdent-object-properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/5467a5a9638472610de4f30709991b9a56bb5613\"\u003e\u003ccode\u003e5467a5a\u003c/code\u003e\u003c/a\u003e 2.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/9f241efedc15a21bcec1edafd43ee773ceb4bc35\"\u003e\u003ccode\u003e9f241ef\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/102\"\u003e#102\u003c/a\u003e from micromatch/ISSUE-93_incorrect_extglob_expanding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/ac3cb660ca76764627aa825676df59378dd60bcd\"\u003e\u003ccode\u003eac3cb66\u003c/code\u003e\u003c/a\u003e fix: support stars in negation extglobs with expression after closing parenth...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/719d348d8a01cf23c6c10568191c1ad5a3fc33e3\"\u003e\u003ccode\u003e719d348\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/85\"\u003e#85\u003c/a\u003e from XhmikosR/codeql\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/ac74e57b38a0d16de8e1752a62003e49c1622cec\"\u003e\u003ccode\u003eac74e57\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/91\"\u003e#91\u003c/a\u003e from XhmikosR/patch-1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.2.2...2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~danez\"\u003edanez\u003c/a\u003e, a new releaser for picomatch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `braces` from 2.3.2 to 3.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/braces/blob/master/CHANGELOG.md\"\u003ebraces's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003eAll notable changes to this project will be documented in this file.\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e[3.0.0] - 2018-04-08\u003c/h2\u003e\n\u003cp\u003ev3.0 is a complete refactor, resulting in a faster, smaller codebase, with fewer deps, and a more accurate parser and compiler.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe undocumented \u003ccode\u003e.makeRe\u003c/code\u003e method was removed\u003c/li\u003e\n\u003cli\u003eRequire Node.js \u0026gt;= 8.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNon-breaking changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCaching was removed\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/micromatch/braces/commits/3.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/4419b6e73f21516c6d53ca4165cb7abb3d79ae24\"\u003e\u003ccode\u003e4419b6e\u003c/code\u003e\u003c/a\u003e 5.1.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/383ce59133bc582fce638f46cea59edf6b224753\"\u003e\u003ccode\u003e383ce59\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b02ef18f66329dc1d7bc8e37863a37b317c5b74e\"\u003e\u003ccode\u003eb02ef18\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/e92ae291a1e512f2d7ae13d6797b02315f68a40c\"\u003e\u003ccode\u003ee92ae29\u003c/code\u003e\u003c/a\u003e 5.1.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/79e44472e457ca43a3f2acebe19288a436db28c4\"\u003e\u003ccode\u003e79e4447\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/85ec0ff1bb34f2b200990140f4f9bdbaa8fb99aa\"\u003e\u003ccode\u003e85ec0ff\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/647146e67c1f47287a4b8d834e28c671c712d639\"\u003e\u003ccode\u003e647146e\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/85646c8f2739fdb0bc3b744606117a9d63f97c74\"\u003e\u003ccode\u003e85646c8\u003c/code\u003e\u003c/a\u003e 5.1.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/977c2d874aff7d416bf91c92b6aef7ab1f926f9b\"\u003e\u003ccode\u003e977c2d8\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/421ad1288bac5ef85e0f1b47155d85a69d753b79\"\u003e\u003ccode\u003e421ad12\u003c/code\u003e\u003c/a\u003e update test expectations for coalesced consecutive stars\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `y18n` from 4.0.0 to 5.0.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yargs/y18n/releases\"\u003ey18n's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ey18n y18n-v4.0.3\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e 4.x.x should not enforce Node 10 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/126\"\u003e#126\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/1e21a536e9135d8403a47be88922157a706b7cde\"\u003e1e21a53\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ey18n y18n-v4.0.2\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e ensure entry exists for backport (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/120\"\u003e#120\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/b22c0df59d0851d7be9fd1d51f6a5ee974c9fc94\"\u003eb22c0df\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yargs/y18n/blob/master/CHANGELOG.md\"\u003ey18n's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.7...v5.0.8\"\u003e5.0.8\u003c/a\u003e (2021-04-07)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeno:\u003c/strong\u003e force modern release for Deno (\u003ca href=\"https://www.github.com/yargs/y18n/commit/b1c215aed714bee5830e76de3e335504dc2c4dab\"\u003eb1c215a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.6...v5.0.7\"\u003e5.0.7\u003c/a\u003e (2021-04-07)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeno:\u003c/strong\u003e force release for deno (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/121\"\u003e#121\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/d3f2560e6cedf2bfa2352e9eec044da53f9a06b2\"\u003ed3f2560\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.5...v5.0.6\"\u003e5.0.6\u003c/a\u003e (2021-04-05)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ewebpack:\u003c/strong\u003e skip readFileSync if not defined (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/117\"\u003e#117\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/6966fa91d2881cc6a6c531e836099e01f4da1616\"\u003e6966fa9\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.4...v5.0.5\"\u003e5.0.5\u003c/a\u003e (2020-10-25)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eaddress prototype pollution issue (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/108\"\u003e#108\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/a9ac604abf756dec9687be3843e2c93bfe581f25\"\u003ea9ac604\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.3...v5.0.4\"\u003e5.0.4\u003c/a\u003e (2020-10-16)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eexports:\u003c/strong\u003e node 13.0 and 13.1 require the dotted object form \u003cem\u003ewith\u003c/em\u003e a string fallback (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/105\"\u003e#105\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/4f85d80dbaae6d2c7899ae394f7ad97805df4886\"\u003e4f85d80\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.2...v5.0.3\"\u003e5.0.3\u003c/a\u003e (2020-10-16)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eexports:\u003c/strong\u003e node 13.0-13.6 require a string fallback (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/103\"\u003e#103\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/e39921e1017f88f5d8ea97ddea854ffe92d68e74\"\u003ee39921e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.1...v5.0.2\"\u003e5.0.2\u003c/a\u003e (2020-10-01)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeno:\u003c/strong\u003e update types for deno ^1.4.0 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/100\"\u003e#100\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/3834d9ab1332f2937c935ada5e76623290efae81\"\u003e3834d9a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.0...v5.0.1\"\u003e5.0.1\u003c/a\u003e (2020-09-05)\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/58a9a3c715af18c5d2000eb0adb206cbbc28db82\"\u003e\u003ccode\u003e58a9a3c\u003c/code\u003e\u003c/a\u003e chore: release 5.0.8 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/129\"\u003e#129\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/b1c215aed714bee5830e76de3e335504dc2c4dab\"\u003e\u003ccode\u003eb1c215a\u003c/code\u003e\u003c/a\u003e fix(deno): force modern release for Deno\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/e73fb19fa1eaadfcce2e2a83ef021a29e3ee4f56\"\u003e\u003ccode\u003ee73fb19\u003c/code\u003e\u003c/a\u003e chore: release 5.0.7 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/123\"\u003e#123\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/d3f2560e6cedf2bfa2352e9eec044da53f9a06b2\"\u003e\u003ccode\u003ed3f2560\u003c/code\u003e\u003c/a\u003e fix(deno): force release for deno (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/121\"\u003e#121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/e9fda6155f5e86b02027c4c973b10d2b08e4f2df\"\u003e\u003ccode\u003ee9fda61\u003c/code\u003e\u003c/a\u003e chore: release 5.0.6 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/118\"\u003e#118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/6966fa91d2881cc6a6c531e836099e01f4da1616\"\u003e\u003ccode\u003e6966fa9\u003c/code\u003e\u003c/a\u003e fix(webpack): skip readFileSync if not defined (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/117\"\u003e#117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/c7555823e00deecfbed2c711ef250c3b877b46d5\"\u003e\u003ccode\u003ec755582\u003c/code\u003e\u003c/a\u003e docs: add entry for v4.0.1 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/114\"\u003e#114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/2d4c56cb45e98e384dbc90f43e0acfa223324024\"\u003e\u003ccode\u003e2d4c56c\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency standardx to v6 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/110\"\u003e#110\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/b64ae70b3cf3d6fd95206f5913a2b3f2b3524f9c\"\u003e\u003ccode\u003eb64ae70\u003c/code\u003e\u003c/a\u003e chore: release 5.0.5 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/109\"\u003e#109\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/a9ac604abf756dec9687be3843e2c93bfe581f25\"\u003e\u003ccode\u003ea9ac604\u003c/code\u003e\u003c/a\u003e fix: address prototype pollution issue (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/108\"\u003e#108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/yargs/y18n/compare/v4.0.0...v5.0.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~oss-bot\"\u003eoss-bot\u003c/a\u003e, a new releaser for y18n since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 4.1.0 to 4.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/cc482e775913e6625137572a3712d2826170e53a\"\u003e\u003ccode\u003ecc482e7\u003c/code\u003e\u003c/a\u003e 4.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/50968b862e75866ef90e626572fe0b2f97b55f9f\"\u003e\u003ccode\u003e50968b8\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/d092d866031751cb27c12d93f3e2470ad74d678b\"\u003e\u003ccode\u003ed092d86\u003c/code\u003e\u003c/a\u003e lint fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879\"\u003e\u003ccode\u003e383665f\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/0d3ca7a27b03a6c974790a30a89e456007d62976\"\u003e\u003ccode\u003e0d3ca7a\u003c/code\u003e\u003c/a\u003e README.md: HTTP =\u0026gt; HTTPS (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/49baadd52af887d2991e2c39a6639baa56d6c71b\"\u003e\u003ccode\u003e49baadd\u003c/code\u003e\u003c/a\u003e doc: 'empty' style option for !!null\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/ba3460eb9d3e4478edcbc29edabe17c2157fc9ce\"\u003e\u003ccode\u003eba3460e\u003c/code\u003e\u003c/a\u003e Fix demo link (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/cc482e775913e6625137572a3712d2826170e53a\"\u003e\u003ccode\u003ecc482e7\u003c/code\u003e\u003c/a\u003e 4.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/50968b862e75866ef90e626572fe0b2f97b55f9f\"\u003e\u003ccode\u003e50968b8\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/d092d866031751cb27c12d93f3e2470ad74d678b\"\u003e\u003ccode\u003ed092d86\u003c/code\u003e\u003c/a\u003e lint fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879\"\u003e\u003ccode\u003e383665f\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/0d3ca7a27b03a6c974790a30a89e456007d62976\"\u003e\u003ccode\u003e0d3ca7a\u003c/code\u003e\u003c/a\u003e README.md: HTTP =\u0026gt; HTTPS (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/49baadd52af887d2991e2c39a6639baa56d6c71b\"\u003e\u003ccode\u003e49baadd\u003c/code\u003e\u003c/a\u003e doc: 'empty' style option for !!null\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/ba3460eb9d3e4478edcbc29edabe17c2157fc9ce\"\u003e\u003ccode\u003eba3460e\u003c/code\u003e\u003c/a\u003e Fix demo link (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://gith...\n\n_Description has been truncated_","html_url":"https://github.com/protonalialol/saltcorn/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/protonalialol%2Fsaltcorn/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"},{"uuid":"4214934308","node_id":"PR_kwDOP6o88s7QXA4G","number":12,"state":"open","title":"chore(deps): bump the npm_and_yarn group across 11 directories with 18 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-07T01:40:05.000Z","updated_at":"2026-04-07T01:44:47.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":18,"packages":[{"name":"electron","old_version":"30.5.1","new_version":"39.8.5","repository_url":"https://github.com/electron/electron"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"immutable","old_version":"4.3.7","new_version":"4.3.8","repository_url":"https://github.com/immutable-js/immutable-js"},{"name":"vite","old_version":"6.2.3","new_version":"6.4.2","repository_url":"https://github.com/vitejs/vite"},{"name":"yaml","old_version":"2.6.0","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"},{"name":"svelte","old_version":"4.2.19","new_version":"5.53.5","repository_url":"https://github.com/sveltejs/svelte"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.13","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"flatted","old_version":"3.3.3","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.14.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 13 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [electron](https://github.com/electron/electron) | `30.5.1` | `39.8.5` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [immutable](https://github.com/immutable-js/immutable-js) | `4.3.7` | `4.3.8` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `6.2.3` | `6.4.2` |\n| [yaml](https://github.com/eemeli/yaml) | `2.6.0` | `2.8.3` |\n| [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) | `4.2.19` | `5.53.5` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.13` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [qs](https://github.com/ljharb/qs) | `6.14.0` | `6.15.0` |\n\nBumps the npm_and_yarn group with 4 updates in the /packages/playwright-core/bundles/utils directory: [yaml](https://github.com/eemeli/yaml), [brace-expansion](https://github.com/juliangruber/brace-expansion), [minimatch](https://github.com/isaacs/minimatch) and [diff](https://github.com/kpdecker/jsdiff).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-ct-core directory: [playwright](https://github.com/microsoft/playwright).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-ct-svelte directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-test directory: [playwright](https://github.com/microsoft/playwright).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-react-vite directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-svelte directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 2 updates in the /tests/components/ct-svelte-vite directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) and [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-vue-vite directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /tests/playwright-test/stable-test-runner directory: [playwright](https://github.com/microsoft/playwright).\nBumps the npm_and_yarn group with 2 updates in the /utils/flakiness-dashboard directory: [form-data](https://github.com/form-data/form-data) and [jws](https://github.com/brianloveswords/node-jws).\n\nUpdates `electron` from 30.5.1 to 39.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/electron/electron/releases\"\u003eelectron's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eelectron v39.8.5\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.5\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a crash in \u003ccode\u003eclipboard.readImage()\u003c/code\u003e when the clipboard contains malformed image data. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50493\"\u003e#50493\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50491\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50492\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50494\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed a crash when calling an offscreen shared texture's \u003ccode\u003erelease()\u003c/code\u003e after the texture object was garbage collected. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50499\"\u003e#50499\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50500\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50501\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50502\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.4\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.4\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003enodeIntegrationInWorker\u003c/code\u003e overrides in \u003ccode\u003esetWindowOpenHandler\u003c/code\u003e were not honored for child windows sharing a renderer process with their opener. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50468\"\u003e#50468\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50163\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50467\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50134\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed crash when handling JavaScript dialogs from windows opened with invalid or empty URLs. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50400\"\u003e#50400\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50401\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50399\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50398\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed improper focus tracking in BaseWindow on MacOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50338\"\u003e#50338\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50337\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50340\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50339\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed window freeze when failing to enter/exit fullscreen on macOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50341\"\u003e#50341\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50344\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50343\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50342\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for using a proxy during yarn install. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50349\"\u003e#50349\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50352\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50350\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50351\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 485935305. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50440\"\u003e#50440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 489381399. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50443\"\u003e#50443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for chromium:475877320. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50436\"\u003e#50436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fixes for 484751092, 487117772. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50461\"\u003e#50461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.3\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.3\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded additional ASAR support to additional \u003ccode\u003efs\u003c/code\u003e copy methods. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50284\"\u003e#50284\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50287\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50286\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50285\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed user resizing of transparent windows on win32 platform. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50300\"\u003e#50300\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50301\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50298\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50299\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.2\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.2\u003c/h1\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackported fix for b/491421267. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50230\"\u003e#50230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.1\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.1\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded validation to protocol client methods to reject protocol names that do not conform to the RFC 3986 URI scheme grammar. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50156\"\u003e#50156\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50157\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50158\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50155\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue on macOS where calling \u003ccode\u003eautoUpdater.quitAndInstall()\u003c/code\u003e could fail if \u003ccode\u003echeckForUpdates()\u003c/code\u003e was called again after an update was already downloaded. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50215\"\u003e#50215\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50216\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50217\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where Chrome Devtools menus may not appear in certain embedded windows. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50136\"\u003e#50136\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50138\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50137\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003eadditionalData\u003c/code\u003e passed to \u003ccode\u003eapp.requestSingleInstanceLock\u003c/code\u003e on Windows could be truncated or fail to deserialize in the primary instance's \u003ccode\u003esecond-instance\u003c/code\u003e event. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50174\"\u003e#50174\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50177\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50162\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50154\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003escreen.getCursorScreenPoint()\u003c/code\u003e crashed on Wayland when it was called before a \u003ccode\u003eBrowserWindow\u003c/code\u003e had been created. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50106\"\u003e#50106\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50104\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50105\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/9d2f8cb4da0d35e2daf7e7f60e35313b508cb224\"\u003e\u003ccode\u003e9d2f8cb\u003c/code\u003e\u003c/a\u003e refactor: remove dead named-window lookup from guest-window-manager (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50498\"\u003e#50498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/11730047394233e70743c52567e17f4c3b2dc9fc\"\u003e\u003ccode\u003e1173004\u003c/code\u003e\u003c/a\u003e fix: crash calling OSR shared texture release() after texture GC'd (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50499\"\u003e#50499\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/be37adefd08f882e3f1fb8403d2d9e92c3009d56\"\u003e\u003ccode\u003ebe37ade\u003c/code\u003e\u003c/a\u003e fix: crash in clipboard.readImage() on malformed image data (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50493\"\u003e#50493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/7007907df08d02da98f513dcbdb430ab51be59c7\"\u003e\u003ccode\u003e7007907\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 3 changes from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50461\"\u003e#50461\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/2c8b6ee0c0a7c26871dc0b320982afd8ed29df6c\"\u003e\u003ccode\u003e2c8b6ee\u003c/code\u003e\u003c/a\u003e chore: cherry-pick fbfb27470bf6 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50436\"\u003e#50436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/4c64377ead6b53bc565d7793a2712e49882e5354\"\u003e\u003ccode\u003e4c64377\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 50b057660b4d from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50440\"\u003e#50440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/0ef056130cde0c19c81ccfbc2932df6911765849\"\u003e\u003ccode\u003e0ef0561\u003c/code\u003e\u003c/a\u003e fix: read nodeIntegrationInWorker from per-frame WebPreferences (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50122\"\u003e#50122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50\"\u003e#50\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/64373df3ca697bc6fe6e3ab1f463ba05beaf64cf\"\u003e\u003ccode\u003e64373df\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 074d472db745 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50443\"\u003e#50443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/13e44072be367f516cfad36f95d183765174f4bf\"\u003e\u003ccode\u003e13e4407\u003c/code\u003e\u003c/a\u003e fix: don't re-parse URL unnecessarily when handling dialogs (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50400\"\u003e#50400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/16a038502a4ea0c79976be60bcc8f28a49f1ab99\"\u003e\u003ccode\u003e16a0385\u003c/code\u003e\u003c/a\u003e ci: output build cache hit rate as GHA annotation (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50369\"\u003e#50369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/electron/electron/compare/v30.5.1...v39.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 2.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `immutable` from 4.3.7 to 4.3.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/immutable-js/immutable-js/releases\"\u003eimmutable's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.3.8\u003c/h2\u003e\n\u003cp\u003eFix Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in immutable\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/immutable-js/immutable-js/blob/main/CHANGELOG.md\"\u003eimmutable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003cp\u003eAll notable changes to this project will be documented in this file.\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"https://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e,\nand this project adheres to \u003ca href=\"https://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\nDates are formatted as YYYY-MM-DD.\u003c/p\u003e\n\u003ch2\u003eUnreleased\u003c/h2\u003e\n\u003ch2\u003e5.1.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in immutable\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMigrate some files to TS by \u003ca href=\"https://github.com/jdeniau\"\u003e\u003ccode\u003e@​jdeniau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2125\"\u003eimmutable-js/immutable-js#2125\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eIterator.ts\u003c/li\u003e\n\u003cli\u003ePairSorting.ts\u003c/li\u003e\n\u003cli\u003etoJS.ts\u003c/li\u003e\n\u003cli\u003eMath.ts\u003c/li\u003e\n\u003cli\u003eHash.ts\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eExtract CollectionHelperMethods and convert to TS by \u003ca href=\"https://github.com/jdeniau\"\u003e\u003ccode\u003e@​jdeniau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2131\"\u003eimmutable-js/immutable-js#2131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse npm \u003ca href=\"https://docs.npmjs.com/trusted-publishers\"\u003etrusted publishing only\u003c/a\u003e to avoid token stealing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix/a11y issues by \u003ca href=\"https://github.com/lyannel\"\u003e\u003ccode\u003e@​lyannel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2136\"\u003eimmutable-js/immutable-js#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc add Map.get signature update by \u003ca href=\"https://github.com/borracciaBlu\"\u003e\u003ccode\u003e@​borracciaBlu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2138\"\u003eimmutable-js/immutable-js#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(doc):minor-issues#2132 by \u003ca href=\"https://github.com/JayMeDotDot\"\u003e\u003ccode\u003e@​JayMeDotDot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2133\"\u003eimmutable-js/immutable-js#2133\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix algolia search by \u003ca href=\"https://github.com/jdeniau\"\u003e\u003ccode\u003e@​jdeniau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2135\"\u003eimmutable-js/immutable-js#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in OrderedMap by \u003ca href=\"https://github.com/jdeniau\"\u003e\u003ccode\u003e@​jdeniau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2144\"\u003eimmutable-js/immutable-js#2144\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore: Sort all imports and activate eslint import rule by \u003ca href=\"https://github.com/jdeniau\"\u003e\u003ccode\u003e@​jdeniau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2119\"\u003eimmutable-js/immutable-js#2119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.3\u003c/h2\u003e\n\u003ch3\u003eTypeScript\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: allow readonly map entry constructor by \u003ca href=\"https://github.com/septs\"\u003e\u003ccode\u003e@​septs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2123\"\u003eimmutable-js/immutable-js#2123\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cp\u003eThere has been a huge amount of changes in the documentation, mainly migrate from an autogenerated documentation from .d.ts file, to a proper documentation in markdown.\nThe playground has been included on nearly all method examples.\nWe added a page about browser extensions too: \u003ca href=\"https://immutable-js.com/browser-extension/\"\u003ehttps://immutable-js.com/browser-extension/\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immutable-js/immutable-js/commit/485cbe0edf3ca7bb4b9c4a80ac55ba937a291da0\"\u003e\u003ccode\u003e485cbe0\u003c/code\u003e\u003c/a\u003e 4.3.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immutable-js/immutable-js/commit/6ed4eb626906df788b08019061b292b90bc718cb\"\u003e\u003ccode\u003e6ed4eb6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immutable-js/immutable-js/commit/94bcd3c79972db4afffd8d1e5aab415880098b05\"\u003e\u003ccode\u003e94bcd3c\u003c/code\u003e\u003c/a\u003e fix new proto key injection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immutable-js/immutable-js/commit/faeb58b0cc71ed351dc51f672a95ae21bc859ef5\"\u003e\u003ccode\u003efaeb58b\u003c/code\u003e\u003c/a\u003e fix Prototype Pollution in mergeDeep, toJS, etc.\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/immutable-js/immutable-js/compare/v4.3.7...v4.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for immutable since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 6.2.3 to 6.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.4.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v6.4.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev6.4.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v6.4.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev6.4.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v6.4.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev6.3.7\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v6.3.7/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev6.3.6\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v6.3.6/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/v6.4.2/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.4.2 (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22163\"\u003e#22163\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/fe28e47e9463e4c9619f94bfa06d2f8f1411b44b\"\u003efe28e47\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22163\"\u003e#22163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/ca4da5d1fb45c9cfdce606aa30825095791b164b\"\u003eca4da5d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.4.1 (2025-10-20)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(dev): trim trailing slash before \u003ccode\u003eserver.fs.deny\u003c/code\u003e check (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20968\"\u003e#20968\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20969\"\u003e#20969\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/1114b5d7ea03e26572708715343bec69db4536e8\"\u003e1114b5d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20968\"\u003e#20968\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20969\"\u003e#20969\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.4.0 (2025-10-15)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: allow passing down resolved config to vite's createServer (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20932\"\u003e#20932\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/ca6455ee9eb6111a9caa9810506a1b9ac96a520a\"\u003eca6455e\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20932\"\u003e#20932\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.3.7 (2025-10-14)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(esbuild): inject esbuild helpers correctly for esbuild 0.25.9+ (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20940\"\u003e#20940\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/c59a222aa584c087cfe710173de1b9ecb597a3ff\"\u003ec59a222\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20940\"\u003e#20940\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.3.6 (2025-09-08)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: apply \u003ccode\u003efs.strict\u003c/code\u003e check to HTML files (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20736\"\u003e#20736\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/0ab19ea9fcb66f544328f442cf6e70f7c0528d5f\"\u003e0ab19ea\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20736\"\u003e#20736\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: upgrade sirv to 3.0.2 (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20735\"\u003e#20735\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/e11d24008b97d4ca731ecc1a3b95260a6d12e7e0\"\u003ee11d240\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20735\"\u003e#20735\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: detect ts support via \u003ccode\u003eprocess.features\u003c/code\u003e (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20544\"\u003e#20544\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/7d9922972b62329d37a71d4da5a4a382d0bf8a79\"\u003e7d99229\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20544\"\u003e#20544\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.3.5 (2025-05-05)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(ssr): handle uninitialized export access as undefined (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19959\"\u003e#19959\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/fd38d076fe2455aac1e00a7b15cd51159bf12bb5\"\u003efd38d07\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19959\"\u003e#19959\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.3.4 (2025-04-30)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: check static serve file inside sirv (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19965\"\u003e#19965\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/c22c43de612eebb6c182dd67850c24e4fab8cacb\"\u003ec22c43d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19965\"\u003e#19965\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(optimizer): return plain object when using \u003ccode\u003erequire\u003c/code\u003e to import externals in optimized dependenci (\u003ca href=\"https://github.com/vitejs/vite/commit/efc5eab253419fde0a6a48b8d2f233063d6a9643\"\u003eefc5eab\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19940\"\u003e#19940\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: remove duplicate plugin context type (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19935\"\u003e#19935\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/d6d01c2292fa4f9603e05b95d81c8724314c20e0\"\u003ed6d01c2\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19935\"\u003e#19935\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.3.3 (2025-04-24)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: ignore malformed uris in tranform middleware (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19853\"\u003e#19853\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/e4d520141bcd83ad61f16767348b4a813bf9340a\"\u003ee4d5201\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19853\"\u003e#19853\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/6b3fad02abd550bd7b79934ff92c58dbd7f33045\"\u003e\u003ccode\u003e6b3fad0\u003c/code\u003e\u003c/a\u003e release: v6.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/ca4da5d1fb45c9cfdce606aa30825095791b164b\"\u003e\u003ccode\u003eca4da5d\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/fe28e47e9463e4c9619f94bfa06d2f8f1411b44b\"\u003e\u003ccode\u003efe28e47\u003c/code\u003e\u003c/a\u003e fix: apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22163\"\u003e#22163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/5487f4f641f70c47ea05fd101a4319897df048b3\"\u003e\u003ccode\u003e5487f4f\u003c/code\u003e\u003c/a\u003e release: v6.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/1114b5d7ea03e26572708715343bec69db4536e8\"\u003e\u003ccode\u003e1114b5d\u003c/code\u003e\u003c/a\u003e fix(dev): trim trailing slash before \u003ccode\u003eserver.fs.deny\u003c/code\u003e check (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20968\"\u003e#20968\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20969\"\u003e#20969\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f12697c0f64b9a37196b9ab218a0911829d5b103\"\u003e\u003ccode\u003ef12697c\u003c/code\u003e\u003c/a\u003e release: v6.4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/ca6455ee9eb6111a9caa9810506a1b9ac96a520a\"\u003e\u003ccode\u003eca6455e\u003c/code\u003e\u003c/a\u003e feat: allow passing down resolved config to vite's createServer (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20932\"\u003e#20932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/0e173d83681daa31be10fa8a62d56b1ec84690af\"\u003e\u003ccode\u003e0e173d8\u003c/code\u003e\u003c/a\u003e release: v6.3.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/c59a222aa584c087cfe710173de1b9ecb597a3ff\"\u003e\u003ccode\u003ec59a222\u003c/code\u003e\u003c/a\u003e fix(esbuild): inject esbuild helpers correctly for esbuild 0.25.9+ (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20940\"\u003e#20940\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/3f337c5e24504e51188d29c970de1416ee523dbb\"\u003e\u003ccode\u003e3f337c5\u003c/code\u003e\u003c/a\u003e release: v6.3.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vitejs/vite/commits/v6.4.2/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for vite since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `yaml` from 2.6.0 to 2.8.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/eemeli/yaml/releases\"\u003eyaml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.8.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003etrailingComma\u003c/code\u003e ToString option for multiline flow formatting (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/670\"\u003e#670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCatch stack overflow during node composition (1e84ebb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.8.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSerialize -0 as -0 (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/638\"\u003e#638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDo not double newlines for empty map values (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/642\"\u003e#642\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.8.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePreserve empty block literals (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/634\"\u003e#634\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd node cache for faster alias resolution (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/612\"\u003e#612\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRe-introduce compatibility with Node.js 14.6 (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/614\"\u003e#614\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e--merge\u003c/code\u003e option to CLI tool (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/611\"\u003e#611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove error for tag resolution error on null value (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/616\"\u003e#616\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow empty string as plain scalar representation, for failsafe schema (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/616\"\u003e#616\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edocs: include cli example (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDo not allow seq with single-line collection value on same line with map key (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/603\"\u003e#603\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove warning \u0026amp; avoid TypeError on bad YAML 1.1 nodes (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/610\"\u003e#610\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.7.0\u003c/h2\u003e\n\u003cp\u003eThe library is now available on JSR as \u003ca href=\"https://jsr.io/@eemeli/yaml\"\u003e\u003ccode\u003e@​eemeli/yaml\u003c/code\u003e\u003c/a\u003e and on deno.land/x as \u003ca href=\"https://deno.land/x/yaml\"\u003eyaml\u003c/a\u003e. In addition to Node.js and browsers, it should work in Deno, Bun, and Cloudflare Workers.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse .ts extension in all relative imports (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/591\"\u003e#591\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore newline after block seq indicator as space before value (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/590\"\u003e#590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire Node.js 14.18 or later (was 14.6) (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDo not strip \u003ccode\u003e:00\u003c/code\u003e seconds from \u003ccode\u003e!!timestamp\u003c/code\u003e values (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/578\"\u003e#578\u003c/a\u003e, with thanks to \u003ca href=\"https://github.com/qraynaud\"\u003e\u003ccode\u003e@​qraynaud\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTighten regexp for JSON \u003ccode\u003e!!bool\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/587\"\u003e#587\u003c/a\u003e, with thanks to \u003ca href=\"https://github.com/vra5107\"\u003e\u003ccode\u003e@​vra5107\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDefault to literal block scalar if folded would overflow (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/585\"\u003e#585\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/ce14587484822bffb0f7d31aefedcaf2dc0d0387\"\u003e\u003ccode\u003ece14587\u003c/code\u003e\u003c/a\u003e 2.8.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/1e84ebbea7ec35011a4c61bbb820a529ee4f359b\"\u003e\u003ccode\u003e1e84ebb\u003c/code\u003e\u003c/a\u003e fix: Catch stack overflow during node composition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/6b24090280eaaab5040112bba41ccef57f39c2d5\"\u003e\u003ccode\u003e6b24090\u003c/code\u003e\u003c/a\u003e ci: Include Prettier check in lint action\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/9424dee38c85163fad53ac27533c7c4bdaf7495d\"\u003e\u003ccode\u003e9424dee\u003c/code\u003e\u003c/a\u003e chore: Refresh lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/d1aca82bc15a4c261bdc58561d32189a5d3a45ef\"\u003e\u003ccode\u003ed1aca82\u003c/code\u003e\u003c/a\u003e Add trailingComma ToString option for multiline flow formatting (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/670\"\u003e#670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/43215099f7fcdac422d778c15e70d83c691b0e41\"\u003e\u003ccode\u003e4321509\u003c/code\u003e\u003c/a\u003e ci: Drop the branch filter from GitHub PR actions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/47207d0fc7d4f863cd5fbdcff1378637bd93e847\"\u003e\u003ccode\u003e47207d0\u003c/code\u003e\u003c/a\u003e chore: Update docs-slate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/5212faeed5936d1fa291d2f28672e4a96e2c2c5d\"\u003e\u003ccode\u003e5212fae\u003c/code\u003e\u003c/a\u003e chore: Update docs-slate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/086fa6b5bae325da18734750cddee231ce578930\"\u003e\u003ccode\u003e086fa6b\u003c/code\u003e\u003c/a\u003e 2.8.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/95f01e98032ddf199b42bb3ba0737303b35ef752\"\u003e\u003ccode\u003e95f01e9\u003c/code\u003e\u003c/a\u003e chore: Add funding to package.json\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/eemeli/yaml/compare/v2.6.0...v2.8.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `svelte` from 4.2.19 to 5.53.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/releases\"\u003esvelte's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esvelte@5.53.5\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: escape \u003ccode\u003einnerText\u003c/code\u003e and \u003ccode\u003etextContent\u003c/code\u003e bindings of \u003ccode\u003econtenteditable\u003c/code\u003e (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0df5abcae223058ceb95491470372065fb87951d\"\u003e\u003ccode\u003e0df5abcae223058ceb95491470372065fb87951d\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: sanitize \u003ccode\u003etransformError\u003c/code\u003e values prior to embedding in HTML comments (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0298e979371bb583855c9810db79a70a551d22b9\"\u003e\u003ccode\u003e0298e979371bb583855c9810db79a70a551d22b9\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.4\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: set server context after async transformError (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17799\"\u003e#17799\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: hydrate if blocks correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17784\"\u003e#17784\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle default parameters scope leaks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17788\"\u003e#17788\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent flushed effects from running again (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17787\"\u003e#17787\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: render \u003ccode\u003e:catch\u003c/code\u003e of \u003ccode\u003e#await\u003c/code\u003e block with correct key (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17769\"\u003e#17769\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003echore: pin aria-query@5.3.1 (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17772\"\u003e#17772\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: make string coercion consistent to \u003ccode\u003etoString\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17774\"\u003e#17774\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: update expressions on server deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17767\"\u003e#17767\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: further obfuscate \u003ccode\u003enode:crypto\u003c/code\u003e import from overzealous static analysis (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17763\"\u003e#17763\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle shadowed function names correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17753\"\u003e#17753\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efeat: allow comments in tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17671\"\u003e#17671\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efeat: allow error boundaries to work on the server (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17672\"\u003e#17672\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: use TrustedHTML to test for customizable \u003c!-- raw HTML omitted --\u003e support, where necessary (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17743\"\u003e#17743\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md\"\u003esvelte's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.53.5\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: escape \u003ccode\u003einnerText\u003c/code\u003e and \u003ccode\u003etextContent\u003c/code\u003e bindings of \u003ccode\u003econtenteditable\u003c/code\u003e (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0df5abcae223058ceb95491470372065fb87951d\"\u003e\u003ccode\u003e0df5abcae223058ceb95491470372065fb87951d\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: sanitize \u003ccode\u003etransformError\u003c/code\u003e values prior to embedding in HTML comments (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0298e979371bb583855c9810db79a70a551d22b9\"\u003e\u003ccode\u003e0298e979371bb583855c9810db79a70a551d22b9\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.4\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: set server context after async transformError (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17799\"\u003e#17799\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: hydrate if blocks correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17784\"\u003e#17784\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle default parameters scope leaks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17788\"\u003e#17788\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent flushed effects from running again (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17787\"\u003e#17787\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: render \u003ccode\u003e:catch\u003c/code\u003e of \u003ccode\u003e#await\u003c/code\u003e block with correct key (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17769\"\u003e#17769\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003echore: pin aria-query@5.3.1 (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17772\"\u003e#17772\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: make string coercion consistent to \u003ccode\u003etoString\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17774\"\u003e#17774\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: update expressions on server deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17767\"\u003e#17767\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: further obfuscate \u003ccode\u003enode:crypto\u003c/code\u003e import from overzealous static analysis (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17763\"\u003e#17763\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle shadowed function names correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17753\"\u003e#17753\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat: allow comments in tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17671\"\u003e#17671\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/ed14b499d6ea6821b5e8f81a723164eb8198dfa9\"\u003e\u003ccode\u003eed14b49\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17802\"\u003e#17802\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0df5abcae223058ceb95491470372065fb87951d\"\u003e\u003ccode\u003e0df5abc\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0298e979371bb583855c9810db79a70a551d22b9\"\u003e\u003ccode\u003e0298e97\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/96fd3ce763525ce6276520ca605dba5ece74ae93\"\u003e\u003ccode\u003e96fd3ce\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17786\"\u003e#17786\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/1b3e6605190ab8ca21292ddd3ccf2a71387d79fe\"\u003e\u003ccode\u003e1b3e660\u003c/code\u003e\u003c/a\u003e fix: prevent flushed effects from running again (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17787\"\u003e#17787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/673a1ab9643644fe31beda33eacfdec9ee1f2668\"\u003e\u003ccode\u003e673a1ab\u003c/code\u003e\u003c/a\u003e fix: set server context after async transformError (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17799\"\u003e#17799\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/3a289797bd205182e7677f58daf472caf537afc2\"\u003e\u003ccode\u003e3a28979\u003c/code\u003e\u003c/a\u003e fix: handle default parameters scope leaks (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17788\"\u003e#17788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/fcdc0289db5e6b0f7cf68cd3988450dad567392f\"\u003e\u003ccode\u003efcdc028\u003c/code\u003e\u003c/a\u003e fix: hydrate if blocks correctly (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17784\"\u003e#17784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/97f3ac557158dd7754264dfe735ed83c2ce95e1f\"\u003e\u003ccode\u003e97f3ac5\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17775\"\u003e#17775\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/7deedc5bb4fd6d0f033d00fa9741c7141fffd730\"\u003e\u003ccode\u003e7deedc5\u003c/code\u003e\u003c/a\u003e fix: render \u003ccode\u003e:catch\u003c/code\u003e of \u003ccode\u003e#await\u003c/code\u003e block with correct key (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17769\"\u003e#17769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sveltejs/svelte/commits/svelte@5.53.5/packages/svelte\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for svelte since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/6c353caf23beb9644f858eb3fe38d43a68b82898\"\u003e\u003ccode\u003e6c353ca\u003c/code\u003e\u003c/a\u003e 1.1.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2\"\u003e\u003ccode\u003e7fd684f\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-f886-m6hf-6m8v (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/95\"\u003e#95\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `picomatch` from 2.3.1 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/releases\"\u003epicomatch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.2\u003c/h2\u003e\n\u003cp\u003eThis is a security release fixing several security relevant issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: exception when glob pattern contains constructor by \u003ca href=\"https://github.com/Jason3S\"\u003e\u003ccode\u003e@​Jason3S\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/micromatch/picomatch/pull/144\"\u003emicromatch/picomatch#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj\"\u003eCVE-2026-33671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p\"\u003eCVE-2026-33672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ehttps://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md\"\u003epicomatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eAll notable changes to this project will be documented in this file.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e4.0.0 (2024-02-07)\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad text values in parse \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/126\"\u003e#126\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/connor4312\"\u003e\u003ccode\u003e@​connor4312\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove process global to work outside of node \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/129\"\u003e#129\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/styfle\"\u003e\u003ccode\u003e@​styfle\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sideEffects to package.json \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/128\"\u003e#128\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/frandiox\"\u003e\u003ccode\u003e@​frandiox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003eos\u003c/code\u003e, make compatible browser environment. See \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/124\"\u003e#124\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/gwsbhqt\"\u003e\u003ccode\u003e@​gwsbhqt\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.1\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/81cba8d4b767cab3cb29d26eb4f691eed75b73b2\"\u003e\u003ccode\u003e81cba8d\u003c/code\u003e\u003c/a\u003e Publish 2.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/fc1f6b69006e9435caf8fb40d8aff378bc0b7bce\"\u003e\u003ccode\u003efc1f6b6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/eec17aee5428a7249e9ca5adbb8a0d28fa29619b\"\u003e\u003ccode\u003eeec17ae\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/78f8ca4362d9e66cadea97b93e292f10096452ed\"\u003e\u003ccode\u003e78f8ca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/156\"\u003e#156\u003c/a\u003e from micromatch/backport-144\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/3f4f10eaa65bf3a52e8f2999674cd27e11fa3c9b\"\u003e\u003ccode\u003e3f4f10e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/144\"\u003e#144\u003c/a\u003e from Jason3S/jdent-object-properties\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flatted` from 3.3.3 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7\"\u003e\u003ccode\u003e3bf0909\u003c/code\u003e\u003c/a\u003e 3.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802\"\u003e\u003ccode\u003e885ddcc\u003c/code\u003e\u003c/a\u003e fix CWE-1321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3\"\u003e\u003ccode\u003e0bdba70\u003c/code\u003e\u003c/a\u003e added flatted-view to the benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20\"\u003e\u003ccode\u003e2a02dce\u003c/code\u003e\u003c/a\u003e 3.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416\"\u003e\u003ccode\u003efba4e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/WebReflection/flatted/issues/89\"\u003e#89\u003c/a\u003e from WebReflection/python-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7\"\u003e\u003ccode\u003e5fe8648\u003c/code\u003e\u003c/a\u003e added \u0026quot;when in Rome\u0026quot; also a test for PHP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0\"\u003e\u003ccode\u003e53517ad\u003c/code\u003e\u003c/a\u003e some minor improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f\"\u003e\u003ccode\u003eb3e2a0c\u003c/code\u003e\u003c/a\u003e Fixing recursion issue in Python too\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad\"\u003e\u003ccode\u003ec4b46db\u003c/code\u003e\u003c/a\u003e Add SECURITY.md for security policy and reporting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988\"\u003e\u003ccode\u003ef86d071\u003c/code\u003e\u003c/a\u003e Create dependabot.yml for version updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/WebReflection/flatted/compare/v3.3.3...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 4.1.0 to 4.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/cc482e775913e6625137572a3712d2826170e53a\"\u003e\u003ccode\u003ecc482e7\u003c/code\u003e\u003c/a\u003e 4.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/50968b862e75866ef90e626572fe0b2f97b55f9f\"\u003e\u003ccode\u003e50968b8\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/d092d866031751cb27c12d93f3e2470ad74d678b\"\u003e\u003ccode\u003ed092d86\u003c/code\u003e\u003c/a\u003e lint fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879\"\u003e\u003ccode\u003e383665f\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/0d3ca7a27b03a6c974790a30a89e456007d62976\"\u003e\u003ccode\u003e0d3ca7a\u003c/code\u003e\u003c/a\u003e README.md: HTTP =\u0026gt; HTTPS (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/49baadd52af887d2991e2c39a6639baa56d6c71b\"\u003e\u003ccode\u003e49baadd\u003c/code\u003e\u003c/a\u003e doc: 'empty' style option for !!null\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/ba3460eb9d3e4478edcbc29edabe17c2157fc9ce\"\u003e\u003ccode\u003eba3460e\u003c/code\u003e\u003c/a\u003e Fix demo link (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.14.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n...\n\n_Description has been truncated_","html_url":"https://github.com/joe10832/playwright/pull/12","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/joe10832%2Fplaywright/issues/12","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/12/packages"},{"uuid":"4214922977","node_id":"PR_kwDOL3EKb87QW-tV","number":6,"state":"open","title":"chore(deps): bump the npm_and_yarn group across 15 directories with 20 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-07T01:35:31.000Z","updated_at":"2026-04-07T01:35:56.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":20,"packages":[{"name":"electron","old_version":"19.0.11","new_version":"39.8.5","repository_url":"https://github.com/electron/electron"},{"name":"esbuild","old_version":"0.18.20","new_version":"0.28.0","repository_url":"https://github.com/evanw/esbuild"},{"name":"vite","old_version":"5.2.8","new_version":"8.0.5","repository_url":"https://github.com/vitejs/vite"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"solid-js","old_version":"1.8.11","new_version":"1.9.4","repository_url":"https://github.com/solidjs/solid"},{"name":"svelte","old_version":"4.2.9","new_version":"5.53.5","repository_url":"https://github.com/sveltejs/svelte"},{"name":"flatted","old_version":"3.2.9","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"qs","old_version":"6.11.2","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 11 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [electron](https://github.com/electron/electron) | `19.0.11` | `39.8.5` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.18.20` | `0.28.0` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `5.2.8` | `8.0.5` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [solid-js](https://github.com/solidjs/solid) | `1.8.11` | `1.9.4` |\n| [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) | `4.2.9` | `5.53.5` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.2.9` | `3.4.2` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [qs](https://github.com/ljharb/qs) | `6.11.2` | `6.15.0` |\n\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-core/bundles/utils directory: [minimatch](https://github.com/isaacs/minimatch).\nBumps the npm_and_yarn group with 2 updates in the /packages/playwright-ct-core directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) and [playwright](https://github.com/microsoft/playwright).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-ct-svelte directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-test directory: [playwright](https://github.com/microsoft/playwright).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright/bundles/babel directory: [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright/bundles/expect directory: [picomatch](https://github.com/micromatch/picomatch).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright/bundles/utils directory: [picomatch](https://github.com/micromatch/picomatch).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-react-vite directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-solid directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-svelte directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 2 updates in the /tests/components/ct-svelte-vite directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) and [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-vue-vite directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /tests/playwright-test/stable-test-runner directory: [playwright](https://github.com/microsoft/playwright).\nBumps the npm_and_yarn group with 3 updates in the /utils/flakiness-dashboard directory: [@azure/msal-node](https://github.com/AzureAD/microsoft-authentication-library-for-js), [form-data](https://github.com/form-data/form-data) and [jws](https://github.com/brianloveswords/node-jws).\n\nUpdates `electron` from 19.0.11 to 39.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/electron/electron/releases\"\u003eelectron's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eelectron v39.8.5\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.5\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a crash in \u003ccode\u003eclipboard.readImage()\u003c/code\u003e when the clipboard contains malformed image data. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50493\"\u003e#50493\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50491\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50492\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50494\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed a crash when calling an offscreen shared texture's \u003ccode\u003erelease()\u003c/code\u003e after the texture object was garbage collected. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50499\"\u003e#50499\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50500\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50501\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50502\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.4\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.4\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003enodeIntegrationInWorker\u003c/code\u003e overrides in \u003ccode\u003esetWindowOpenHandler\u003c/code\u003e were not honored for child windows sharing a renderer process with their opener. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50468\"\u003e#50468\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50163\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50467\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50134\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed crash when handling JavaScript dialogs from windows opened with invalid or empty URLs. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50400\"\u003e#50400\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50401\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50399\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50398\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed improper focus tracking in BaseWindow on MacOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50338\"\u003e#50338\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50337\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50340\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50339\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed window freeze when failing to enter/exit fullscreen on macOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50341\"\u003e#50341\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50344\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50343\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50342\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for using a proxy during yarn install. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50349\"\u003e#50349\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50352\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50350\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50351\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 485935305. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50440\"\u003e#50440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 489381399. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50443\"\u003e#50443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for chromium:475877320. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50436\"\u003e#50436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fixes for 484751092, 487117772. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50461\"\u003e#50461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.3\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.3\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded additional ASAR support to additional \u003ccode\u003efs\u003c/code\u003e copy methods. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50284\"\u003e#50284\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50287\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50286\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50285\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed user resizing of transparent windows on win32 platform. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50300\"\u003e#50300\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50301\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50298\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50299\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.2\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.2\u003c/h1\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackported fix for b/491421267. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50230\"\u003e#50230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.1\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.1\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded validation to protocol client methods to reject protocol names that do not conform to the RFC 3986 URI scheme grammar. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50156\"\u003e#50156\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50157\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50158\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50155\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue on macOS where calling \u003ccode\u003eautoUpdater.quitAndInstall()\u003c/code\u003e could fail if \u003ccode\u003echeckForUpdates()\u003c/code\u003e was called again after an update was already downloaded. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50215\"\u003e#50215\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50216\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50217\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where Chrome Devtools menus may not appear in certain embedded windows. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50136\"\u003e#50136\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50138\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50137\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003eadditionalData\u003c/code\u003e passed to \u003ccode\u003eapp.requestSingleInstanceLock\u003c/code\u003e on Windows could be truncated or fail to deserialize in the primary instance's \u003ccode\u003esecond-instance\u003c/code\u003e event. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50174\"\u003e#50174\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50177\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50162\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50154\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003escreen.getCursorScreenPoint()\u003c/code\u003e crashed on Wayland when it was called before a \u003ccode\u003eBrowserWindow\u003c/code\u003e had been created. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50106\"\u003e#50106\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50104\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50105\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/9d2f8cb4da0d35e2daf7e7f60e35313b508cb224\"\u003e\u003ccode\u003e9d2f8cb\u003c/code\u003e\u003c/a\u003e refactor: remove dead named-window lookup from guest-window-manager (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50498\"\u003e#50498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/11730047394233e70743c52567e17f4c3b2dc9fc\"\u003e\u003ccode\u003e1173004\u003c/code\u003e\u003c/a\u003e fix: crash calling OSR shared texture release() after texture GC'd (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50499\"\u003e#50499\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/be37adefd08f882e3f1fb8403d2d9e92c3009d56\"\u003e\u003ccode\u003ebe37ade\u003c/code\u003e\u003c/a\u003e fix: crash in clipboard.readImage() on malformed image data (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50493\"\u003e#50493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/7007907df08d02da98f513dcbdb430ab51be59c7\"\u003e\u003ccode\u003e7007907\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 3 changes from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50461\"\u003e#50461\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/2c8b6ee0c0a7c26871dc0b320982afd8ed29df6c\"\u003e\u003ccode\u003e2c8b6ee\u003c/code\u003e\u003c/a\u003e chore: cherry-pick fbfb27470bf6 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50436\"\u003e#50436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/4c64377ead6b53bc565d7793a2712e49882e5354\"\u003e\u003ccode\u003e4c64377\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 50b057660b4d from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50440\"\u003e#50440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/0ef056130cde0c19c81ccfbc2932df6911765849\"\u003e\u003ccode\u003e0ef0561\u003c/code\u003e\u003c/a\u003e fix: read nodeIntegrationInWorker from per-frame WebPreferences (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50122\"\u003e#50122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50\"\u003e#50\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/64373df3ca697bc6fe6e3ab1f463ba05beaf64cf\"\u003e\u003ccode\u003e64373df\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 074d472db745 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50443\"\u003e#50443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/13e44072be367f516cfad36f95d183765174f4bf\"\u003e\u003ccode\u003e13e4407\u003c/code\u003e\u003c/a\u003e fix: don't re-parse URL unnecessarily when handling dialogs (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50400\"\u003e#50400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/16a038502a4ea0c79976be60bcc8f28a49f1ab99\"\u003e\u003ccode\u003e16a0385\u003c/code\u003e\u003c/a\u003e ci: output build cache hit rate as GHA annotation (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50369\"\u003e#50369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/electron/electron/compare/v19.0.11...v39.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `esbuild` from 0.18.20 to 0.28.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/releases\"\u003eesbuild's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.28.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for \u003ccode\u003ewith { type: 'text' }\u003c/code\u003e imports (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4435\"\u003e#4435\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe \u003ca href=\"https://github.com/tc39/proposal-import-text\"\u003eimport text\u003c/a\u003e proposal has reached stage 3 in the TC39 process, which means that it's recommended for implementation. It has also already been implemented by \u003ca href=\"https://docs.deno.com/examples/importing_text/\"\u003eDeno\u003c/a\u003e and \u003ca href=\"https://bun.com/docs/guides/runtime/import-html\"\u003eBun\u003c/a\u003e. So with this release, esbuild also adds support for it. This behaves exactly the same as esbuild's existing \u003ca href=\"https://esbuild.github.io/content-types/#text\"\u003e\u003ccode\u003etext\u003c/code\u003e loader\u003c/a\u003e. Here's an example:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eimport string from './example.txt' with { type: 'text' }\nconsole.log(string)\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd integrity checks to fallback download path (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4343\"\u003e#4343\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eInstalling esbuild via npm is somewhat complicated with several different edge cases (see \u003ca href=\"https://esbuild.github.io/getting-started/#additional-npm-flags\"\u003eesbuild's documentation\u003c/a\u003e for details). If the regular installation of esbuild's platform-specific package fails, esbuild's install script attempts to download the platform-specific package itself (first with the \u003ccode\u003enpm\u003c/code\u003e command, and then with a HTTP request to \u003ccode\u003eregistry.npmjs.org\u003c/code\u003e as a last resort).\u003c/p\u003e\n\u003cp\u003eThis last resort path previously didn't have any integrity checks. With this release, esbuild will now verify that the hash of the downloaded binary matches the expected hash for the current release. This means the hashes for all of esbuild's platform-specific binary packages will now be embedded in the top-level \u003ccode\u003eesbuild\u003c/code\u003e package. Hopefully this should work without any problems. But just in case, this change is being done as a breaking change release.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpdate the Go compiler from 1.25.7 to 1.26.1\u003c/p\u003e\n\u003cp\u003eThis upgrade should not affect anything. However, there have been some significant internal changes to the Go compiler, so esbuild could potentially behave differently in certain edge cases:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIt now uses the \u003ca href=\"https://go.dev/doc/go1.26#new-garbage-collector\"\u003enew garbage collector\u003c/a\u003e that comes with Go 1.26.\u003c/li\u003e\n\u003cli\u003eThe Go compiler is now more aggressive with allocating memory on the stack.\u003c/li\u003e\n\u003cli\u003eThe executable format that the Go linker uses has undergone several changes.\u003c/li\u003e\n\u003cli\u003eThe WebAssembly build now unconditionally makes use of the sign extension and non-trapping floating-point to integer conversion instructions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eYou can read the \u003ca href=\"https://go.dev/doc/go1.26\"\u003eGo 1.26 release notes\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.27.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix lowering of define semantics for TypeScript parameter properties (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4421\"\u003e#4421\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe previous release incorrectly generated class fields for TypeScript parameter properties even when the configured target environment does not support class fields. With this release, the generated class fields will now be correctly lowered in this case:\u003c/p\u003e\n\u003cpre lang=\"ts\"\u003e\u003ccode\u003e// Original code\nclass Foo {\n  constructor(public x = 1) {}\n  y = 2\n}\n\u003cp\u003e// Old output (with --loader=ts --target=es2021)\nclass Foo {\nconstructor(x = 1) {\nthis.x = x;\n__publicField(this, \u0026quot;y\u0026quot;, 2);\n}\nx;\n}\u003c/p\u003e\n\u003cp\u003e// New output (with --loader=ts --target=es2021)\nclass Foo {\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/blob/main/CHANGELOG-2023.md\"\u003eesbuild's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog: 2023\u003c/h1\u003e\n\u003cp\u003eThis changelog documents all esbuild versions published in the year 2023 (versions 0.16.13 through 0.19.11).\u003c/p\u003e\n\u003ch2\u003e0.19.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix TypeScript-specific class transform edge case (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3559\"\u003e#3559\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe previous release introduced an optimization that avoided transforming \u003ccode\u003esuper()\u003c/code\u003e in the class constructor for TypeScript code compiled with \u003ccode\u003euseDefineForClassFields\u003c/code\u003e set to \u003ccode\u003efalse\u003c/code\u003e if all class instance fields have no initializers. The rationale was that in this case, all class instance fields are omitted in the output so no changes to the constructor are needed. However, if all of this is the case \u003cem\u003eand\u003c/em\u003e there are \u003ccode\u003e#private\u003c/code\u003e instance fields with initializers, those private instance field initializers were still being moved into the constructor. This was problematic because they were being inserted before the call to \u003ccode\u003esuper()\u003c/code\u003e (since \u003ccode\u003esuper()\u003c/code\u003e is now no longer transformed in that case). This release introduces an additional optimization that avoids moving the private instance field initializers into the constructor in this edge case, which generates smaller code, matches the TypeScript compiler's output more closely, and avoids this bug:\u003c/p\u003e\n\u003cpre lang=\"ts\"\u003e\u003ccode\u003e// Original code\nclass Foo extends Bar {\n  #private = 1;\n  public: any;\n  constructor() {\n    super();\n  }\n}\n\u003cp\u003e// Old output (with esbuild v0.19.9)\nclass Foo extends Bar {\nconstructor() {\nsuper();\nthis.#private = 1;\n}\n#private;\n}\u003c/p\u003e\n\u003cp\u003e// Old output (with esbuild v0.19.10)\nclass Foo extends Bar {\nconstructor() {\nthis.#private = 1;\nsuper();\n}\n#private;\n}\u003c/p\u003e\n\u003cp\u003e// New output\nclass Foo extends Bar {\n#private = 1;\nconstructor() {\nsuper();\n}\n}\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eMinifier: allow reording a primitive past a side-effect (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3568\"\u003e#3568\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe minifier previously allowed reordering a side-effect past a primitive, but didn't handle the case of reordering a primitive past a side-effect. This additional case is now handled:\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/6a794dff68e6a43539f6da671e3080efdf11ca70\"\u003e\u003ccode\u003e6a794df\u003c/code\u003e\u003c/a\u003e publish 0.28.0 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/64ee0ea63b2ff303caafc9610c388dc72c882c23\"\u003e\u003ccode\u003e64ee0ea\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4435\"\u003e#4435\u003c/a\u003e: support \u003ccode\u003ewith { type: text }\u003c/code\u003e imports\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/ef65aeeaacdb71eade186f888975b1de89574314\"\u003e\u003ccode\u003eef65aee\u003c/code\u003e\u003c/a\u003e fix sort order in \u003ccode\u003esnapshots_packagejson.txt\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/1a26a8ecbc39aaf1379c524a0274a08fbcbed655\"\u003e\u003ccode\u003e1a26a8e\u003c/code\u003e\u003c/a\u003e try to fix \u003ccode\u003etest-old-ts\u003c/code\u003e, also shuffle CI tasks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/556ce6c1fc00d7c0917fbfada01ed8e5251bc510\"\u003e\u003ccode\u003e556ce6c\u003c/code\u003e\u003c/a\u003e use \u003ccode\u003e''\u003c/code\u003e instead of \u003ccode\u003enull\u003c/code\u003e to omit build hashes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/8e675a81a473ea69a46a69792f1386bb110dd877\"\u003e\u003ccode\u003e8e675a8\u003c/code\u003e\u003c/a\u003e ci: allow missing binary hashes for tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/7067763b904fe8a522fa840a4a48c5fbd4c395e0\"\u003e\u003ccode\u003e7067763\u003c/code\u003e\u003c/a\u003e Reapply \u0026quot;update go 1.25.7 =\u0026gt; 1.26.1\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/39473a952ab3b450d0578b698a8b8d2a02332e0d\"\u003e\u003ccode\u003e39473a9\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4343\"\u003e#4343\u003c/a\u003e: integrity check for binary download\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/2025c9ff6ab15ba6b0f9d074fd732250cc46e4a3\"\u003e\u003ccode\u003e2025c9f\u003c/code\u003e\u003c/a\u003e publish 0.27.7 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/c6b586e4904f47e8d5f783a2813660c13e2672e7\"\u003e\u003ccode\u003ec6b586e\u003c/code\u003e\u003c/a\u003e fix typo in \u003ccode\u003eMakefile\u003c/code\u003e for \u003ccode\u003e@esbuild/win32-x64\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/evanw/esbuild/compare/v0.18.20...v0.28.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for esbuild since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 5.2.8 to 8.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.5\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.5/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.4\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.4/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.3/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.3/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.2/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.1/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@8.0.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@8.0.1/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.0/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@8.0.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@8.0.0/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.18\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.18/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.17\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.17/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.16\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.16/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.15\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.15/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.14\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.14/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v8.0.4...v8.0.5\"\u003e8.0.5\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapply server.fs check to env transport (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f02d9fde0b195afe3ea2944414186962fbbe41e0\"\u003ef02d9fd\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eavoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/79f002f2286c03c88c7b74c511c7f9fc6dc46694\"\u003e79f002f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echeck \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22160\"\u003e#22160\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/a9a3df299378d9cbc5f069e3536a369f8188c8ff\"\u003ea9a3df2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edisallow referencing files outside the package from sourcemap (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22158\"\u003e#22158\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f05f50173461789e0f1323fe06b51f18ca41c132\"\u003ef05f501\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v8.0.3...v8.0.4\"\u003e8.0.4\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow esbuild 0.28 as peer deps (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22155\"\u003e#22155\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/b0da97372f5dba73e78035d1cc7680466ff6cf7f\"\u003eb0da973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehmr:\u003c/strong\u003e truncate list of files on hmr update (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21535\"\u003e#21535\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/d00e806d7be15ebbfe7875e9244963d80ee8b142\"\u003ed00e806\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eoptimizer:\u003c/strong\u003e log when dependency scanning or bundling takes over 1s (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21797\"\u003e#21797\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f61a1ab33b05dc6f6a7eda6e8bc9c4c5b9aab133\"\u003ef61a1ab\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ehasBothRollupOptionsAndRolldownOptions\u003c/code\u003e should return \u003ccode\u003efalse\u003c/code\u003e for proxy case (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22043\"\u003e#22043\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/99897d27b44dd73307fa03e2f11f0baa1a1dc939\"\u003e99897d2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd types for \u003ccode\u003evite/modulepreload-polyfill\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22126\"\u003e#22126\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/17330d2b9e132460f194d6d4b547cfee7e25c788\"\u003e17330d2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update all non-major dependencies (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22073\"\u003e#22073\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/6daa10ff1e8d15a90f49d8dd909ff208da85d6d8\"\u003e6daa10f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update all non-major dependencies (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22143\"\u003e#22143\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/22b016612703320db45c64a2fe44472051ef5ec5\"\u003e22b0166\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eresolve:\u003c/strong\u003e resolve tsconfig paths starting with \u003ccode\u003e#\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22038\"\u003e#22038\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/3460fc55aa89aef4103d2c05ac2e446032511a6d\"\u003e3460fc5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003essr:\u003c/strong\u003e use browser platform for webworker SSR builds (fix \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21969\"\u003e#21969\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21963\"\u003e#21963\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/364c2273a121dad4d93ec3b9ec87ffbe0d6e860b\"\u003e364c227\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eenvironment.fetchModule\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22035\"\u003e#22035\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/54229e78631ebf10d1db767b51ea85f3cf06718a\"\u003e54229e7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMiscellaneous Chores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update rolldown-related dependencies (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21989\"\u003e#21989\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/0ded6274579e8bda6b22a7ba93b15d15b4c28b78\"\u003e0ded627\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCode Refactoring\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupgrade to typescript 6 (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22110\"\u003e#22110\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/cc41398c2cf0bb5061cf0ca5dc3b408ae7e41191\"\u003ecc41398\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v8.0.2...v8.0.3\"\u003e8.0.3\u003c/a\u003e (2026-03-26)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate rolldown to 1.0.0-rc.12 (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22024\"\u003e#22024\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/84164ef47b24b1de114f1c29446a9e650825d4ea\"\u003e84164ef\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehtml:\u003c/strong\u003e cache unfiltered CSS list to prevent missing styles across entries (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22017\"\u003e#22017\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/5464190a3ee8f23db20004e7818186fbcc32b0e5\"\u003e5464190\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emodule-runner:\u003c/strong\u003e handle non-ascii characters in base64 sourcemaps (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21985\"\u003e#21985\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/77c95bff834c43f8be9fe513c10b5393805a7487\"\u003e77c95bf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emodule-runner:\u003c/strong\u003e skip re-import if the runner is closed (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22020\"\u003e#22020\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/ee2c2cd2c2ce3f53088bd2313fa23e9d52a49b4f\"\u003eee2c2cd\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eoptimizer:\u003c/strong\u003e scan is not resolving sub path import if used in a glob import (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22018\"\u003e#22018\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/ddfe20d19e95a323fa3c8d2c19a02c4e02f93824\"\u003eddfe20d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003essr:\u003c/strong\u003e ssrTransform incorrectly rewrites \u003ccode\u003emeta\u003c/code\u003e identifier inside \u003ccode\u003eimport.meta\u003c/code\u003e when a binding named \u003ccode\u003emeta\u003c/code\u003e exists (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22019\"\u003e#22019\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/cff5f0cca5f08c2ce50f233441485e10b6e115e9\"\u003ecff5f0c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMiscellaneous Chores\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/1a12d4ca4c62eedaeaf734d722b27ab17b5b1dd0\"\u003e\u003ccode\u003e1a12d4c\u003c/code\u003e\u003c/a\u003e release: v8.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/79f002f2286c03c88c7b74c511c7f9fc6dc46694\"\u003e\u003ccode\u003e79f002f\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/a9a3df299378d9cbc5f069e3536a369f8188c8ff\"\u003e\u003ccode\u003ea9a3df2\u003c/code\u003e\u003c/a\u003e fix: check \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160\"\u003e#22160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f02d9fde0b195afe3ea2944414186962fbbe41e0\"\u003e\u003ccode\u003ef02d9fd\u003c/code\u003e\u003c/a\u003e fix: apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f05f50173461789e0f1323fe06b51f18ca41c132\"\u003e\u003ccode\u003ef05f501\u003c/code\u003e\u003c/a\u003e fix: disallow referencing files outside the package from sourcemap (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22158\"\u003e#22158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/7339bdc915c297e16e6530f6ebcbb2509cb57f24\"\u003e\u003ccode\u003e7339bdc\u003c/code\u003e\u003c/a\u003e release: v8.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/54229e78631ebf10d1db767b51ea85f3cf06718a\"\u003e\u003ccode\u003e54229e7\u003c/code\u003e\u003c/a\u003e docs: add \u003ccode\u003eenvironment.fetchModule\u003c/code\u003e documentation (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22035\"\u003e#22035\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/b0da97372f5dba73e78035d1cc7680466ff6cf7f\"\u003e\u003ccode\u003eb0da973\u003c/code\u003e\u003c/a\u003e feat: allow esbuild 0.28 as peer deps (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22155\"\u003e#22155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/22b016612703320db45c64a2fe44472051ef5ec5\"\u003e\u003ccode\u003e22b0166\u003c/code\u003e\u003c/a\u003e fix(deps): update all non-major dependencies (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22143\"\u003e#22143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/17330d2b9e132460f194d6d4b547cfee7e25c788\"\u003e\u003ccode\u003e17330d2\u003c/code\u003e\u003c/a\u003e fix: add types for \u003ccode\u003evite/modulepreload-polyfill\u003c/code\u003e (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22126\"\u003e#22126\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vitejs/vite/commits/v8.0.5/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for vite since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 2.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 5.2.8 to 8.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.5\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.5/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.4\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.4/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.3/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.3/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.2/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.1/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@8.0.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@8.0.1/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.0/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@8.0.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@8.0.0/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.18\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.18/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.17\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.17/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.16\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.16/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.15\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.15/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.14\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.14/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v8.0.4...v8.0.5\"\u003e8.0.5\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapply server.fs check to env transport (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f02d9fde0b195afe3ea2944414186962fbbe41e0\"\u003ef02d9fd\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eavoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/79f002f2286c03c88c7b74c511c7f9fc6dc46694\"\u003e79f002f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echeck \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22160\"\u003e#22160\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/a9a3df299378d9cbc5f069e3536a369f8188c8ff\"\u003ea9a3df2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edisallow referencing files outside the package from sourcemap (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22158\"\u003e#22158\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f05f50173461789e0f1323fe06b51f18ca41c132\"\u003ef05f501\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v8.0.3...v8.0.4\"\u003e8.0.4\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow esbuild 0.28 as peer deps (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22155\"\u003e#22155\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/b0da97372f5dba73e78035d1cc7680466ff6cf7f\"\u003eb0da973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehmr:\u003c/strong\u003e truncate list of files on hmr update (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21535\"\u003e#21535\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/d00e806d7be15ebbfe7875e9244963d80ee8b142\"\u003ed00e806\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eoptimizer:\u003c/strong\u003e log when dependency scanning or bundling takes over 1s (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21797\"\u003e#21797\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f61a1ab33b05dc6f6a7eda6e8bc9c4c5b9aab133\"\u003ef61a1ab\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ehasBothRollupOptionsAndRolldownOptions\u003c/code\u003e should return \u003ccode\u003efalse\u003c/code\u003e for proxy case (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22043\"\u003e#22043\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/99897d27b44dd73307fa03e2f11f0baa1a1dc939\"\u003e99897d2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd types for \u003ccode\u003evite/modulepreload-polyfill\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22126\"\u003e#22126\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/17330d2b9e132460f194d6d4b547cfee7e25c788\"\u003e17330d2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update all non-major dependencies (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22073\"\u003e#22073\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/6daa10ff1e8d15a90f49d8dd909ff208da85d6d8\"\u003e6daa10f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update all non-major dependencies (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22143\"\u003e#22143\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/22b016612703320db45c64a2fe44472051ef5ec5\"\u003e22b0166\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eresolve:\u003c/strong\u003e resolve tsconfig paths starting with \u003ccode\u003e#\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22038\"\u003e#22038\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/3460fc55aa89aef4103d2c05ac2e446032511a6d\"\u003e3460fc5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003essr:\u003c/strong\u003e use browser platform for webworker SSR builds (fix \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21969\"\u003e#21969\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21963\"\u003e#21963\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/364c2273a121dad4d93ec3b9ec87ffbe0d6e860b\"\u003e364c227\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eenvironment.fetchModule\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22035\"\u003e#22035\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/54229e78631ebf10d1db767b51ea85f3cf06718a\"\u003e54229e7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMiscellaneous Chores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update rolldown-related dependencies (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21989\"\u003e#21989\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/0ded6274579e8bda6b22a7ba93b15d15b4c28b78\"\u003e0ded627\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCode Refactoring\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupgrade to typescript 6 (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22110\"\u003e#22110\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/cc41398c2cf0bb5061cf0ca5dc3b408ae7e41191\"\u003ecc41398\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v8.0.2...v8.0.3\"\u003e8.0.3\u003c/a\u003e (2026-03-26)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate rolldown to 1.0.0-rc.12 (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22024\"\u003e#22024\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/84164ef47b24b1de114f1c29446a9e650825d4ea\"\u003e84164ef\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehtml:\u003c/strong\u003e cache unfiltered CSS list to prevent missing styles across entries (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22017\"\u003e#22017\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/5464190a3ee8f23db20004e7818186fbcc32b0e5\"\u003e5464190\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emodule-runner:\u003c/strong\u003e handle non-ascii characters in base64 sourcemaps (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21985\"\u003e#21985\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/77c95bff834c43f8be9fe513c10b5393805a7487\"\u003e77c95bf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emodule-runner:\u003c/strong\u003e skip re-import if the runner is closed (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22020\"\u003e#22020\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/ee2c2cd2c2ce3f53088bd2313fa23e9d52a49b4f\"\u003eee2c2cd\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eoptimizer:\u003c/strong\u003e scan is not resolving sub path import if used in a glob import (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22018\"\u003e#22018\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/ddfe20d19e95a323fa3c8d2c19a02c4e02f93824\"\u003eddfe20d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003essr:\u003c/strong\u003e ssrTransform incorrectly rewrites \u003ccode\u003emeta\u003c/code\u003e identifier inside \u003ccode\u003eimport.meta\u003c/code\u003e when a binding named \u003ccode\u003emeta\u003c/code\u003e exists (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22019\"\u003e#22019\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/cff5f0cca5f08c2ce50f233441485e10b6e115e9\"\u003ecff5f0c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMiscellaneous Chores\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/1a12d4ca4c62eedaeaf734d722b27ab17b5b1dd0\"\u003e\u003ccode\u003e1a12d4c\u003c/code\u003e\u003c/a\u003e release: v8.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/79f002f2286c03c88c7b74c511c7f9fc6dc46694\"\u003e\u003ccode\u003e79f002f\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/a9a3df299378d9cbc5f069e3536a369f8188c8ff\"\u003e\u003ccode\u003ea9a3df2\u003c/code\u003e\u003c/a\u003e fix: check \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160\"\u003e#22160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f02d9fde0b195afe3ea2944414186962fbbe41e0\"\u003e\u003ccode\u003ef02d9fd\u003c/code\u003e\u003c/a\u003e fix: apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f05f50173461789e0f1323fe06b51f18ca41c132\"\u003e\u003ccode\u003ef05f501\u003c/code\u003e\u003c/a\u003e fix: disallow referencing files outside the package from sourcemap (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22158\"\u003e#22158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/7339bdc915c297e16e6530f6ebcbb2509cb57f24\"\u003e\u003ccode\u003e7339bdc\u003c/code\u003e\u003c/a\u003e release: v8.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/54229e78631ebf10d1db767b51ea85f3cf06718a\"\u003e\u003ccode\u003e54229e7\u003c/code\u003e\u003c/a\u003e docs: add \u003ccode\u003eenvironment.fetchModule\u003c/code\u003e documentation (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22035\"\u003e#22035\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/b0da97372f5dba73e78035d1cc7680466ff6cf7f\"\u003e\u003ccode\u003eb0da973\u003c/code\u003e\u003c/a\u003e feat: allow esbuild 0.28 as peer deps (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22155\"\u003e#22155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/22b016612703320db45c64a2fe44472051ef5ec5\"\u003e\u003ccode\u003e22b0166\u003c/code\u003e\u003c/a\u003e fix(deps): update all non-major dependencies (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22143\"\u003e#22143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/17330d2b9e132460f194d6d4b547cfee7e25c788\"\u003e\u003ccode\u003e17330d2\u003c/code\u003e\u003c/a\u003e fix: add types for \u003ccode\u003evite/modulepreload-polyfill\u003c/code\u003e (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22126\"\u003e#22126\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vitejs/vite/commits/v8.0.5/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for vite since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `solid-js` from 1.8.11 to 1.9.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/solidjs/solid/releases\"\u003esolid-js's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.9.0 - LGTM!\u003c/h2\u003e\n\u003cp\u003eThis release like the last is focusing on small quality of life improvements and adjustments that will help us move towards 2.0. So while not the most exciting release to everyone it provides some really important features and fixes to some developers.\u003c/p\u003e\n\u003cp\u003eAnd unlike many previous releases the vast majority of the work and features came from PRs from the community. So really all I can say is Looks Good to Me!\u003c/p\u003e\n\u003ch2\u003eBetter JSX Validation\u003c/h2\u003e\n\u003cp\u003eWhile still incomplete across templates we've added JSDOM to the compiler to better detect invalid HTML at build time by comparing what we expect the template to be with what a browser would output. This now includes things that are nested we didn't detect before like putting \u003ccode\u003e\u0026lt;a\u0026gt;\u003c/code\u003e inside other \u003ccode\u003e\u0026lt;a\u0026gt;\u003c/code\u003e tags which will lead to the browser \u0026quot;correcting\u0026quot; it in less than intuitive ways.\u003c/p\u003e\n\u003ch2\u003eImproved Exports\u003c/h2\u003e\n\u003cp\u003eWhile each environment in \u003ccode\u003esolid-js/web\u003c/code\u003e has its own methods to be used in the compiler. We are now exporting the client methods from the server to prevent weird import errors. Now these methods will throw if used in this environment but shouldn't break your build.\u003c/p\u003e\n\u003cp\u003eAdditionally we have seen some issues in bundlers that incorrectly feed our ESM exports back through the browser field. While this is a known issue they all pointed issues at each other and with no intention of fixing it. We have removed the browser field in this release, meaning some legacy packages may have issues resolving browser if they don't support export conditions.\u003c/p\u003e\n\u003cp\u003eThis is regretful but this blocked deployments on several platforms and since this was the only fix at our disposal after two years of attempting to push this issue to the bundlers to no avail, we've moved forward with it.\u003c/p\u003e\n\u003ch2\u003eCustom Element improvements\u003c/h2\u003e\n\u003cp\u003eWe have a few improvements to our custom element support in this release. First off we now detect elements with the \u003ccode\u003eis\u003c/code\u003e attribute as custom elements which means all the special behavior is afforded to them.\u003c/p\u003e\n\u003cp\u003eWe've also improved our event handler delegating retargetting to better handle shadow DOM events. There were cases where we skipped over part of the tree.\u003c/p\u003e\n\u003cp\u003eFinally we've added the \u003ccode\u003ebool:\u003c/code\u003e attribute namespace to handle explicitly setting certain attributes according to boolean attribute rules. While this isn't necessary for built-in booleans currently we handle most attributes as properties and we lacked a specific override. But now we have it:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003e\u0026lt;my-element bool:enable={isEnabled()}\u0026gt;\u0026lt;/my-element\u0026gt;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003eSupport for handleEvent Syntax in Non-Delegated Events\u003c/h2\u003e\n\u003cp\u003eA little known thing is that events actually also support objects instead of functions (See: \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/API/EventTarget/addEventListener\"\u003ehttps://developer.mozilla.org/en-US/docs/Web/API/EventTarget/addEventListener\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eWe(thanks \u003ca href=\"https://github.com/titoBouzout\"\u003e\u003ccode\u003e@​titoBouzout\u003c/code\u003e\u003c/a\u003e) realized we can use this mechanism as a way to set advanced rules like \u003ccode\u003epassive\u003c/code\u003e or \u003ccode\u003ecapture\u003c/code\u003e on this object as way to handle all current and future event attributes that browsers might add. This way we don't need specific mechanisms like \u003ccode\u003eoncapture:\u003c/code\u003e (which is now deprecated).\u003c/p\u003e\n\u003cp\u003eInstead using \u003ccode\u003eon:\u003c/code\u003e you can set the event properties you wish.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003e\u0026lt;\u0026gt;\r\n  \u0026lt;div on:click={{\r\n    handleEvent(e) {\r\n      console.log(\u0026quot;clicked\u0026quot;, e)\r\n    },\r\n    once:true\r\n  }/\u0026gt;\r\n  \u0026lt;div on:wheel={{\r\n    handleEvent(e) {\r\n      e.preventDefault() // only works on not passive events\r\n      e.stopPropagation()  \r\n\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt; \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/9316baf658c83f4b372ab08709ca7aaefeaba3c0\"\u003e\u003ccode\u003e9316baf\u003c/code\u003e\u003c/a\u003e v1.9.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/7f9cd3d395d10179d39bfdb803c101d56067ffd5\"\u003e\u003ccode\u003e7f9cd3d\u003c/code\u003e\u003c/a\u003e lazy image, tagged template detection, security fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/dca942a351d889adc116ad7f5f8bd62ac2ed7535\"\u003e\u003ccode\u003edca942a\u003c/code\u003e\u003c/a\u003e formatting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/b93956f28ed75469af6976a98728e313d0edd236\"\u003e\u003ccode\u003eb93956f\u003c/code\u003e\u003c/a\u003e fix escaping in resolution done outside of DOM Expressions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/4d824b08d8534d2a079f9ca4c1ea980684c05582\"\u003e\u003ccode\u003e4d824b0\u003c/code\u003e\u003c/a\u003e Merge branch 'main' of github.com:solidjs/solid\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/199dd69297b0b120fbea2ef1cc2699eef8b4467a\"\u003e\u003ccode\u003e199dd69\u003c/code\u003e\u003c/a\u003e fix reconcile null guard\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/32aa744f1dad9e7daab0661acc62baec27d7b40d\"\u003e\u003ccode\u003e32aa744\u003c/code\u003e\u003c/a\u003e Improve resolving arguments in createResource (\u003ca href=\"https://redirect.github.com/solidjs/solid/issues/2353\"\u003e#2353\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/73822b287f4d38e219588e6ee7f64fa712663598\"\u003e\u003ccode\u003e73822b2\u003c/code\u003e\u003c/a\u003e v1.9.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/5a14ab8ac569a97231a6e0011774ae3f4396e7ee\"\u003e\u003ccode\u003e5a14ab8\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/solidjs/solid/issues/2337\"\u003e#2337\u003c/a\u003e empty attributes in solid-element\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/9b70a15055462dee3a1c34d24eeb001ca4a694a2\"\u003e\u003ccode\u003e9b70a15\u003c/code\u003e\u003c/a\u003e validation fixes, type updates, ssr attribute fix\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/solidjs/solid/compare/v1.8.11...v1.9.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `svelte` from 4.2.9 to 5.53.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/releases\"\u003esvelte's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esvelte@5.53.5\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: escape \u003ccode\u003einnerText\u003c/code\u003e and \u003ccode\u003etextContent\u003c/code\u003e bindings of \u003ccode\u003econtenteditable\u003c/code\u003e (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0df5abcae223058ceb95491470372065fb87951d\"\u003e\u003ccode\u003e0df5abcae223058ceb95491470372065fb87951d\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: sanitize \u003ccode\u003etransformError\u003c/code\u003e values prior to embedding in HTML comments (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0298e979371bb583855c9810db79a70a551d22b9\"\u003e\u003ccode\u003e0298e979371bb583855c9810db79a70a551d22b9\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.4\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: set server context after async transformError (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17799\"\u003e#17799\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: hydrate if blocks correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17784\"\u003e#17784\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle default parameters scope leaks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17788\"\u003e#17788\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent flushed effects from running again (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17787\"\u003e#17787\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: render \u003ccode\u003e:catch\u003c/code\u003e of \u003ccode\u003e#await\u003c/code\u003e block with correct key (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17769\"\u003e#17769\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003echore: pin aria-query@5.3.1 (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17772\"\u003e#17772\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: make string coercion consistent to \u003ccode\u003etoString\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17774\"\u003e#17774\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: update expressions on server deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17767\"\u003e#17767\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: further obfuscate \u003ccode\u003enode:crypto\u003c/code\u003e import from overzealous static analysis (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17763\"\u003e#17763\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle shadowed function names correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17753\"\u003e#17753\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efeat: allow comments in tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17671\"\u003e#17671\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efeat: allow error boundaries to work on the server (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17672\"\u003e#17672\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: use TrustedHTML to test for customizable \u003c!-- raw HTML omitted --\u003e support, where necessary (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17743\"\u003e#17743\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md\"\u003esvelte's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.53.5\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: escape \u003ccode\u003einnerText\u003c/code\u003e and \u003ccode\u003etextContent\u003c/code\u003e bindings of \u003ccode\u003econtenteditable\u003c/code\u003e (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0df5abcae223058ceb95491470372065fb87951d\"\u003e\u003ccode\u003e0df5abcae223058ceb95491470372065fb87951d\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: sanitize \u003ccode\u003etransformError\u003c/code\u003e values prior to embedding in HTML comments (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0298e979371bb583855c9810db79a70a551d22b9\"\u003e\u003ccode\u003e0298e979371bb583855c9810db79a70a551d22b9\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.4\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: set server context after async transformError (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17799\"\u003e#17799\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: hydrate if blocks correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17784\"\u003e#17784\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle default parameters scope leaks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17788\"\u003e#17788\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent flushed effects from running again (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17787\"\u003e#17787\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: render \u003ccode\u003e:catch\u003c/code\u003e of \u003ccode\u003e#await\u003c/code\u003e block with correct key (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17769\"\u003e#17769\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003echore: pin aria-query@5.3.1 (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17772\"\u003e#17772\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: make string coercion consistent to \u003ccode\u003etoString\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17774\"\u003e#17774\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: update expressions on server deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17767\"\u003e#17767\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: further obfuscate \u003ccode\u003enode:crypto\u003c/code\u003e import from overzealous static analysis (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17763\"\u003e#17763\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle shadowed function names correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17753\"\u003e#17753\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat: allow comments in tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17671\"\u003e#17671\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/ed14b499d6ea6821b5e8f81a723164eb8198dfa9\"\u003e\u003ccode\u003eed14b49\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17802\"\u003e#17802\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0df5abcae223058ceb95491470372065fb87951d\"\u003e\u003ccode\u003e0df5abc\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0298e979371bb583855c9810db79a70a551d22b9\"\u003e\u003ccode\u003e0298e97\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/96fd3ce763525ce6276520ca605dba5ece74ae93\"\u003e\u003ccode\u003e96fd3ce\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17786\"\u003e#17786\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/1b3e6605190ab8ca21292ddd3ccf2a71387d79fe\"\u003e\u003ccode\u003e1b3e660\u003c/code\u003e\u003c/a\u003e fix: prevent flushed effects from running again (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17787\"\u003e#17787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/673a1ab9643644fe31beda33eacfdec9ee1f2668\"\u003e\u003ccode\u003e673a1ab\u003c/code\u003e\u003c/a\u003e fix: set server context after async transformError (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17799\"\u003e#17799\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/3a289797bd205182e7677f58daf472caf537afc2\"\u003e\u003ccode\u003e3a28979\u003c/code\u003e\u003c/a\u003e fix: handle default parameters scope leaks (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17788\"\u003e#17788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/fcdc0289db5e6b0f7cf68cd3988450dad567392f\"\u003e\u003ccode\u003efcdc028\u003c/code\u003e\u003c/a\u003e fix: hydrate if blocks correctly (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17784\"\u003e#17784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/97f3ac557158dd7754264dfe735ed83c2ce95e1f\"\u003e\u003ccode\u003e97f3ac5\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17775\"\u003e#17775\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/7deedc5bb4fd6d0f033d00fa9741c7141fffd730\"\u003e\u003ccode\u003e7deedc5\u003c/code\u003e\u003c/a\u003e fix: render \u003ccode\u003e:catch\u003c/code\u003e of \u003ccode\u003e#await\u003c/code\u003e block with correct key (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17769\"\u003e#17769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sveltejs/svelte/commits/svelte@5.53.5/packages/svelte\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for svelte since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.23.8 to 7.29.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.2 (2026-03-16)\u003c/h2\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17840\"\u003e#17840\u003c/a\u003e [7.x backport] async x =\u0026gt; {} must be in leading pos (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helpers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17805\"\u003e#17805\u003c/a\u003e [7.x backport] fix: Properly handle await in finally (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-preset-env\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17789\"\u003e#17789\u003c/a\u003e [7.x backport] preset-env include/exclude should accept bugfix plugins (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17813\"\u003e#17813\u003c/a\u003e chore: update eslint peer deps (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 2\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.1 (2026-02-04)\u003c/h2\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17771\"\u003e#17771\u003c/a\u003e [7.x backport] fix: ensure \u003ccode\u003etargets.esmodules\u003c/code\u003e is validated (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17776\"\u003e#17776\u003c/a\u003e [7.x backport] Fix undefined when 64 indents (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 2\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.0 (2026-01-31)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca hr...\n\n_Description has been truncated_","html_url":"https://github.com/alialobidm/playwright/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/alialobidm%2Fplaywright/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"},{"uuid":"4174506994","node_id":"PR_kwDOPkuVNc7OxolR","number":2,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 7 directories with 22 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-07T02:57:20.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-30T22:41:33.000Z","updated_at":"2026-04-07T02:57:21.000Z","time_to_close":620147,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":22,"packages":[{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"@modelcontextprotocol/sdk","old_version":"1.17.3","new_version":"1.26.0","repository_url":"https://github.com/modelcontextprotocol/typescript-sdk"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"yaml","old_version":"2.6.0","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.13","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"electron","old_version":"30.5.1","new_version":"35.7.5","repository_url":"https://github.com/electron/electron"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"immutable","old_version":"4.3.7","new_version":"4.3.8","repository_url":"https://github.com/immutable-js/immutable-js"},{"name":"vite","old_version":"6.3.5","new_version":"6.4.1","repository_url":"https://github.com/vitejs/vite"},{"name":"svelte","old_version":"5.37.3","new_version":"5.53.5","repository_url":"https://github.com/sveltejs/svelte"},{"name":"flatted","old_version":"3.3.3","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"rollup","old_version":"4.40.1","new_version":"4.60.1","repository_url":"https://github.com/rollup/rollup"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 2 updates in the /utils/flakiness-dashboard directory: [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) and [jws](https://github.com/brianloveswords/node-jws).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright/bundles/utils directory: [picomatch](https://github.com/micromatch/picomatch).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright/bundles/mcp directory: [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright/bundles/expect directory: [picomatch](https://github.com/micromatch/picomatch).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-core/bundles/zip directory: [yauzl](https://github.com/thejoshwolfe/yauzl).\nBumps the npm_and_yarn group with 4 updates in the /packages/playwright-core/bundles/utils directory: [diff](https://github.com/kpdecker/jsdiff), [minimatch](https://github.com/isaacs/minimatch), [yaml](https://github.com/eemeli/yaml) and [brace-expansion](https://github.com/juliangruber/brace-expansion).\nBumps the npm_and_yarn group with 15 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk) | `1.17.3` | `1.26.0` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [yaml](https://github.com/eemeli/yaml) | `2.6.0` | `2.8.3` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.13` |\n| [electron](https://github.com/electron/electron) | `30.5.1` | `35.7.5` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [immutable](https://github.com/immutable-js/immutable-js) | `4.3.7` | `4.3.8` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `6.3.5` | `6.4.1` |\n| [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) | `5.37.3` | `5.53.5` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [rollup](https://github.com/rollup/rollup) | `4.40.1` | `4.60.1` |\n\n\nUpdates `fast-xml-parser` from 5.2.5 to 5.5.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/releases\"\u003efast-xml-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003efix typins and matcher instance in callbacks\u003c/h2\u003e\n\u003cp\u003ecombine typings file to avoid configuration changes\npass readonly instance of matcher to the call backs to avoid accidental push/pop call\u003c/p\u003e\n\u003ch2\u003efix bugs of entity parsing and value parsing\u003c/h2\u003e\n\u003cp\u003efix: entity expansion limits\nupdate strnum package to 2.2.0\u003c/p\u003e\n\u003ch2\u003efix entity expansion and incorrect replacement and performance\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.5...v5.5.6\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.5...v5.5.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003esupport onDangerousProperty\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.3...v5.5.5\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.3...v5.5.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eupdate dependecies to fix typings\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.1...v5.5.2\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.1...v5.5.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eintegrate path-expression-matcher\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport path-expression-matcher\u003c/li\u003e\n\u003cli\u003efix: stopNode should not be parsed\u003c/li\u003e\n\u003cli\u003eperformance improvement for stopNode checking\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eSeparate Builder\u003c/h2\u003e\n\u003cp\u003eXML Builder was the part of \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder\"\u003efast-xml-parser\u003c/a\u003e for years. But considering that any bug in builder may false-alarm the users who are only using parser and vice-versa, we have decided to split it into a separate package.\u003c/p\u003e\n\u003ch2\u003eMigration\u003c/h2\u003e\n\u003cp\u003eTo migrate to fast-xml-builder;\u003c/p\u003e\n\u003cp\u003eFrom\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eimport { XMLBuilder } from \u0026quot;fast-xml-parser\u0026quot;;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eTo\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eimport  XMLBuilder  from \u0026quot;fast-xml-builder\u0026quot;;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eXMLBuilder will be removed from current package in any next major version of this library. So better to migrate.\u003c/p\u003e\n\u003ch2\u003esupport strictReservedNames\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.9...v5.3.9\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.9...v5.3.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ehandle non-array input for XML builder \u0026amp;\u0026amp; support maxNestedTags\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport maxNestedTags\u003c/li\u003e\n\u003cli\u003ehandle non-array input for XML builder when preserveOrder is true (By \u003ca href=\"https://github.com/Angelopvtac\"\u003eAngelo Coetzee\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esave use of js properies\n\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.7...v5.3.8\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.7...v5.3.8\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md\"\u003efast-xml-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003eNote: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eNote: Due to some last quick changes on v4, detail of v4.5.3 \u0026amp; v4.5.4 are not updated here. v4.5.4x is the last tag of v4 in github repository. I'm extremely sorry for the confusion\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.9 / 2026-03-23\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ecombine typing files\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e4.5.5 / 2026-03-22\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eapply fixes from v5 (legacy maintenance branch v4-maintenance)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003esupport maxEntityCount\u003c/li\u003e\n\u003cli\u003esupport onDangerousProperty\u003c/li\u003e\n\u003cli\u003esupport maxNestedTags\u003c/li\u003e\n\u003cli\u003ehandle prototype pollution\u003c/li\u003e\n\u003cli\u003efix incorrect entity name replacement\u003c/li\u003e\n\u003cli\u003efix incorrect condition for entity expansion\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.8 / 2026-03-20\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003epass read only matcher in callback\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.7 / 2026-03-19\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: entity expansion limits\u003c/li\u003e\n\u003cli\u003eupdate strnum package to 2.2.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.6 / 2026-03-16\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eupdate builder dependency\u003c/li\u003e\n\u003cli\u003efix incorrect regex to replace . in entity name\u003c/li\u003e\n\u003cli\u003efix check for entitiy expansion for lastEntities and html entities too\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.5 / 2026-03-13\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003esanitize dangerous tag or attribute name\u003c/li\u003e\n\u003cli\u003eerror on critical property name\u003c/li\u003e\n\u003cli\u003esupport onDangerousProperty option\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.4 / 2026-03-13\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003edeclare Matcher \u0026amp; Expression as unknown so user is not forced to install path-expression-matcher\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.3 / 2026-03-11\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eupgrade builder\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.2 / 2026-03-11\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eupdate dependency to fix typings\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.1 / 2026-03-10\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix dependency\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/a8934f903054c582b8ae6a12937fd4b22c380613\"\u003e\u003ccode\u003ea8934f9\u003c/code\u003e\u003c/a\u003e upgrade strnum\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/23d13e40c35386069eec8e28c8bfdaabc3962680\"\u003e\u003ccode\u003e23d13e4\u003c/code\u003e\u003c/a\u003e combine typing files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/0c0a7dc500983c549c2b1c9e1987dfabc69eddda\"\u003e\u003ccode\u003e0c0a7dc\u003c/code\u003e\u003c/a\u003e update maintenance docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/a92a665e00c146a4ea3ff7760f3399e5ed51dfc5\"\u003e\u003ccode\u003ea92a665\u003c/code\u003e\u003c/a\u003e pass read only matcher in call back\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/a21c44123cdf0f8fb5b56d33386ed3be4e180953\"\u003e\u003ccode\u003ea21c441\u003c/code\u003e\u003c/a\u003e update package detail\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/239b64aa1fc5c5455ddebbbb54a187eb68c9fdb7\"\u003e\u003ccode\u003e239b64a\u003c/code\u003e\u003c/a\u003e check for min value for entity exapantion options\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/61cb666d13044b483aa495a6c020789f22e670b4\"\u003e\u003ccode\u003e61cb666\u003c/code\u003e\u003c/a\u003e restrict more properties to be unsafe\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/41abd66adc54cbc6ebea615a9f5396d8582afdb1\"\u003e\u003ccode\u003e41abd66\u003c/code\u003e\u003c/a\u003e performance improvement of reading DOCTYPE\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/3dfcd20c8cffc310335510ff72a211be0672a8dd\"\u003e\u003ccode\u003e3dfcd20\u003c/code\u003e\u003c/a\u003e refactor: performance improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/870043e75e78545192bc70950c6286d36c7cdf23\"\u003e\u003ccode\u003e870043e\u003c/code\u003e\u003c/a\u003e update release info\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.2.5...v5.5.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 3.2.2 to 3.2.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.3\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/6b6de48\"\u003e6b6de48\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks \u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/6b6de48\"\u003e6b6de48\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/4f6e73f24df42f07d632dec6431ade8eda8d11a6\"\u003e\u003ccode\u003e4f6e73f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/bd0fea57f35a97b6749a632b19ae5100d6d35729\"\u003e\u003ccode\u003ebd0fea5\u003c/code\u003e\u003c/a\u003e version 3.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/7c3b4b411004c206af8901fa3f8e644127bbf8d9\"\u003e\u003ccode\u003e7c3b4b4\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/a9b8ed999de8f8fff486ac9167514577a0fae323\"\u003e\u003ccode\u003ea9b8ed9\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/6707fde62cbae465a7f11e52760fb994dbc0e0dc\"\u003e\u003ccode\u003e6707fde\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v3.2.2...v3.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `picomatch` from 2.3.1 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/releases\"\u003epicomatch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.2\u003c/h2\u003e\n\u003cp\u003eThis is a security release fixing several security relevant issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: exception when glob pattern contains constructor by \u003ca href=\"https://github.com/Jason3S\"\u003e\u003ccode\u003e@​Jason3S\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/micromatch/picomatch/pull/144\"\u003emicromatch/picomatch#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj\"\u003eCVE-2026-33671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p\"\u003eCVE-2026-33672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ehttps://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md\"\u003epicomatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eAll notable changes to this project will be documented in this file.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e4.0.0 (2024-02-07)\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad text values in parse \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/126\"\u003e#126\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/connor4312\"\u003e\u003ccode\u003e@​connor4312\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove process global to work outside of node \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/129\"\u003e#129\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/styfle\"\u003e\u003ccode\u003e@​styfle\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sideEffects to package.json \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/128\"\u003e#128\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/frandiox\"\u003e\u003ccode\u003e@​frandiox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003eos\u003c/code\u003e, make compatible browser environment. See \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/124\"\u003e#124\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/gwsbhqt\"\u003e\u003ccode\u003e@​gwsbhqt\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.1\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/81cba8d4b767cab3cb29d26eb4f691eed75b73b2\"\u003e\u003ccode\u003e81cba8d\u003c/code\u003e\u003c/a\u003e Publish 2.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/fc1f6b69006e9435caf8fb40d8aff378bc0b7bce\"\u003e\u003ccode\u003efc1f6b6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/eec17aee5428a7249e9ca5adbb8a0d28fa29619b\"\u003e\u003ccode\u003eeec17ae\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/78f8ca4362d9e66cadea97b93e292f10096452ed\"\u003e\u003ccode\u003e78f8ca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/156\"\u003e#156\u003c/a\u003e from micromatch/backport-144\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/3f4f10eaa65bf3a52e8f2999674cd27e11fa3c9b\"\u003e\u003ccode\u003e3f4f10e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/144\"\u003e#144\u003c/a\u003e from Jason3S/jdent-object-properties\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@modelcontextprotocol/sdk` from 1.17.3 to 1.26.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/releases\"\u003e\u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.26.0\u003c/h2\u003e\n\u003cp\u003eAddresses \u0026quot;Sharing server/transport instances can leak cross-client response data\u0026quot; in this GHSA \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/security/advisories/GHSA-345p-7cg4-v4c7\"\u003ehttps://github.com/modelcontextprotocol/typescript-sdk/security/advisories/GHSA-345p-7cg4-v4c7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: bump v1.25.3 for backport fixes by \u003ca href=\"https://github.com/pcarleton\"\u003e\u003ccode\u003e@​pcarleton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1412\"\u003emodelcontextprotocol/typescript-sdk#1412\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(deps): resolve npm audit vulnerabilities and bump dependencies (v1.x backport) by \u003ca href=\"https://github.com/samuv\"\u003e\u003ccode\u003e@​samuv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1382\"\u003emodelcontextprotocol/typescript-sdk#1382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1430\"\u003e#1430\u003c/a\u003e: Client Credentials providers scopes support (backported) by \u003ca href=\"https://github.com/NSeydoux\"\u003e\u003ccode\u003e@​NSeydoux\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1442\"\u003emodelcontextprotocol/typescript-sdk#1442\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: bump version to 1.26.0 by \u003ca href=\"https://github.com/pcarleton\"\u003e\u003ccode\u003e@​pcarleton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1479\"\u003emodelcontextprotocol/typescript-sdk#1479\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samuv\"\u003e\u003ccode\u003e@​samuv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1382\"\u003emodelcontextprotocol/typescript-sdk#1382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NSeydoux\"\u003e\u003ccode\u003e@​NSeydoux\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1442\"\u003emodelcontextprotocol/typescript-sdk#1442\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/compare/v1.25.3...v1.26.0\"\u003ehttps://github.com/modelcontextprotocol/typescript-sdk/compare/v1.25.3...v1.26.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.25.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[v1.x backport] Use correct schema for client sampling validation when tools are present by \u003ca href=\"https://github.com/olaservo\"\u003e\u003ccode\u003e@​olaservo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1407\"\u003emodelcontextprotocol/typescript-sdk#1407\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent Hono from overriding global Response object (v1.x) by \u003ca href=\"https://github.com/mattzcarey\"\u003e\u003ccode\u003e@​mattzcarey\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1411\"\u003emodelcontextprotocol/typescript-sdk#1411\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/compare/v1.25.2...v1.25.3\"\u003ehttps://github.com/modelcontextprotocol/typescript-sdk/compare/v1.25.2...v1.25.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.25.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: trigger workflow on v1.x branch by \u003ca href=\"https://github.com/felixweinberger\"\u003e\u003ccode\u003e@​felixweinberger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1319\"\u003emodelcontextprotocol/typescript-sdk#1319\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: README badges links destinations by \u003ca href=\"https://github.com/antonpk1\"\u003e\u003ccode\u003e@​antonpk1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/907\"\u003emodelcontextprotocol/typescript-sdk#907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent ReDoS in UriTemplate regex patterns (v1.x backport) by \u003ca href=\"https://github.com/pcarleton\"\u003e\u003ccode\u003e@​pcarleton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1365\"\u003emodelcontextprotocol/typescript-sdk#1365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antonpk1\"\u003e\u003ccode\u003e@​antonpk1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/907\"\u003emodelcontextprotocol/typescript-sdk#907\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/compare/1.25.1...v1.25.2\"\u003ehttps://github.com/modelcontextprotocol/typescript-sdk/compare/1.25.1...v1.25.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.25.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003espec types - backwards compatibility changes by \u003ca href=\"https://github.com/KKonstantinov\"\u003e\u003ccode\u003e@​KKonstantinov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1306\"\u003emodelcontextprotocol/typescript-sdk#1306\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: bump version for patch fix by \u003ca href=\"https://github.com/felixweinberger\"\u003e\u003ccode\u003e@​felixweinberger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1307\"\u003emodelcontextprotocol/typescript-sdk#1307\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/compare/1.25.0...1.25.1\"\u003ehttps://github.com/modelcontextprotocol/typescript-sdk/compare/1.25.0...1.25.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.25.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003elist changed handlers on client constructor by \u003ca href=\"https://github.com/mattzcarey\"\u003e\u003ccode\u003e@​mattzcarey\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1206\"\u003emodelcontextprotocol/typescript-sdk#1206\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRole - moved from inline to reusable type by \u003ca href=\"https://github.com/KKonstantinov\"\u003e\u003ccode\u003e@​KKonstantinov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1221\"\u003emodelcontextprotocol/typescript-sdk#1221\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: use versioned npm tag for non-main branch releases by \u003ca href=\"https://github.com/pcarleton\"\u003e\u003ccode\u003e@​pcarleton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1236\"\u003emodelcontextprotocol/typescript-sdk#1236\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNo automatic completion support unless needed - Revisited yet again by \u003ca href=\"https://github.com/cliffhall\"\u003e\u003ccode\u003e@​cliffhall\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1237\"\u003emodelcontextprotocol/typescript-sdk#1237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Support updating output schema by \u003ca href=\"https://github.com/vincent0426\"\u003e\u003ccode\u003e@​vincent0426\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1048\"\u003emodelcontextprotocol/typescript-sdk#1048\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/fe9c07b465871394c7069207c86513df9c1194a4\"\u003e\u003ccode\u003efe9c07b\u003c/code\u003e\u003c/a\u003e chore: bump version to 1.26.0 (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1479\"\u003e#1479\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/4f01e7e0708e1a85ccc7dbf39e850005f2d9ff03\"\u003e\u003ccode\u003e4f01e7e\u003c/code\u003e\u003c/a\u003e fix: add non-null assertions for optional setupServer fields in stateful test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/a05be176cabeae1f933b676e3ce024bf02e2314d\"\u003e\u003ccode\u003ea05be17\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/50d9fa3cd12e807e7963bcb9e1548786d3d5d941\"\u003e\u003ccode\u003e50d9fa3\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1430\"\u003e#1430\u003c/a\u003e: Client Credentials providers scopes support (backported) (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1442\"\u003e#1442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/aa81a66556fb4434d8a6d1b70f7ac9fc40b5d325\"\u003e\u003ccode\u003eaa81a66\u003c/code\u003e\u003c/a\u003e fix(deps): resolve npm audit vulnerabilities and bump dependencies (v1.x back...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/6aba0659654e1ff0699844524595922a61e44cb9\"\u003e\u003ccode\u003e6aba065\u003c/code\u003e\u003c/a\u003e chore: bump v1.25.3 for backport fixes (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1412\"\u003e#1412\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/6e8f7e1a43a819ae230373c62b82228dafd892c6\"\u003e\u003ccode\u003e6e8f7e1\u003c/code\u003e\u003c/a\u003e fix: prevent Hono from overriding global Response object (v1.x) (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1411\"\u003e#1411\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/12ae856cee6ca58499cce24e80f650e78a0c7610\"\u003e\u003ccode\u003e12ae856\u003c/code\u003e\u003c/a\u003e [v1.x backport] Use correct schema for client sampling validation when tools ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/b392f02ffcf37c088dbd114fedf25026ec3913d3\"\u003e\u003ccode\u003eb392f02\u003c/code\u003e\u003c/a\u003e fix: prevent ReDoS in UriTemplate regex patterns (v1.x backport) (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1365\"\u003e#1365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/a0c9b13484748acab9e5dc8317a7e89c06b52e37\"\u003e\u003ccode\u003ea0c9b13\u003c/code\u003e\u003c/a\u003e fix: README badges links destinations (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/907\"\u003e#907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/compare/1.17.3...v1.26.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~pcarleton\"\u003epcarleton\u003c/a\u003e, a new releaser for \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 8.18.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `body-parser` from 2.2.0 to 2.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/body-parser/releases\"\u003ebody-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README links by \u003ca href=\"https://github.com/efekrskl\"\u003e\u003ccode\u003e@​efekrskl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/673\"\u003eexpressjs/body-parser#673\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: release notes for the v1.20.4 release by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/674\"\u003eexpressjs/body-parser#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update URL-encoded parser description to include ISO-8859-1 encoding support by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/679\"\u003eexpressjs/body-parser#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: use standard jsdoc tags everywhere by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/677\"\u003eexpressjs/body-parser#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: qs@^6.14.1 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/689\"\u003eexpressjs/body-parser#689\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(json): simplify strict mode error string construction by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/693\"\u003eexpressjs/body-parser#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 2.2.2 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/691\"\u003eexpressjs/body-parser#691\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/efekrskl\"\u003e\u003ccode\u003e@​efekrskl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/673\"\u003eexpressjs/body-parser#673\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/body-parser/compare/v2.2.1...v2.2.2\"\u003ehttps://github.com/expressjs/body-parser/compare/v2.2.1...v2.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.2.1\u003c/h2\u003e\n\u003ch2\u003eImportant: Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-13466\"\u003eCVE-2025-13466\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/body-parser/security/advisories/GHSA-wqch-xfxh-vrr4\"\u003eGHSA-wqch-xfxh-vrr4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: add dependabot by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/593\"\u003eexpressjs/body-parser#593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: use full SHAs for github action versions by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/594\"\u003eexpressjs/body-parser#594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: type-is@^2.0.1 by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/599\"\u003eexpressjs/body-parser#599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4.3.0 to 4.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/609\"\u003eexpressjs/body-parser#609\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.13 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/610\"\u003eexpressjs/body-parser#610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump eslint-plugin-promise from 6.1.1 to 6.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/611\"\u003eexpressjs/body-parser#611\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump eslint-plugin-import from 2.27.5 to 2.31.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/613\"\u003eexpressjs/body-parser#613\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump eslint-plugin-markdown from 3.0.0 to 3.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/612\"\u003eexpressjs/body-parser#612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add codeql github workflows scanning by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/614\"\u003eexpressjs/body-parser#614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: update CodeQL config to ignore the test directory by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/615\"\u003eexpressjs/body-parser#615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/download-artifact from 4.2.1 to 4.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/620\"\u003eexpressjs/body-parser#620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.16 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/619\"\u003eexpressjs/body-parser#619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): unpin devDependencies by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/616\"\u003eexpressjs/body-parser#616\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add node.js 24 to test matrix by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/621\"\u003eexpressjs/body-parser#621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.16 to 3.28.18 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/623\"\u003eexpressjs/body-parser#623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/624\"\u003eexpressjs/body-parser#624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: add funding to package.json by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/617\"\u003eexpressjs/body-parser#617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/625\"\u003eexpressjs/body-parser#625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.2 to 3.29.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/630\"\u003eexpressjs/body-parser#630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: move common request validation to read function by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/600\"\u003eexpressjs/body-parser#600\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: bump iconv-lite by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/631\"\u003eexpressjs/body-parser#631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edoc: pull beta changelog forward into 2.0.0 by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/629\"\u003eexpressjs/body-parser#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: optimize raw and text parsers with shared passthrough function by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/634\"\u003eexpressjs/body-parser#634\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/640\"\u003eexpressjs/body-parser#640\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/639\"\u003eexpressjs/body-parser#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4.4.0 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/636\"\u003eexpressjs/body-parser#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/download-artifact from 4.3.0 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/637\"\u003eexpressjs/body-parser#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.7 to 3.30.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/638\"\u003eexpressjs/body-parser#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: raw-body@^3.0.1 by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/641\"\u003eexpressjs/body-parser#641\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/body-parser/blob/master/HISTORY.md\"\u003ebody-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e2.2.2 / 2026-01-07\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: qs@^6.14.1\u003c/li\u003e\n\u003cli\u003erefactor(json): simplify strict mode error string construction\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e2.2.1 / 2025-11-24\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://github.com/expressjs/body-parser/security/advisories/GHSA-wqch-xfxh-vrr4\"\u003eGHSA-wqch-xfxh-vrr4\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps:\n\u003cul\u003e\n\u003cli\u003etype-is@^2.0.1\u003c/li\u003e\n\u003cli\u003eiconv-lite@^0.7.0\n\u003cul\u003e\n\u003cli\u003eHandle split surrogate pairs when encoding UTF-8\u003c/li\u003e\n\u003cli\u003eAvoid false positives in \u003ccode\u003eencodingExists\u003c/code\u003e by using prototype-less objects\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eraw-body@^3.0.1\u003c/li\u003e\n\u003cli\u003edebug@^4.4.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/3d248660b2e8b66732b232d7c758517fbf2420a6\"\u003e\u003ccode\u003e3d24866\u003c/code\u003e\u003c/a\u003e 2.2.2 (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/691\"\u003e#691\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/8474a984c3ba36a1b4328ce019833b99caa0f08f\"\u003e\u003ccode\u003e8474a98\u003c/code\u003e\u003c/a\u003e refactor(json): simplify strict mode error string construction (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/693\"\u003e#693\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/03f17c2538552a57e6be537afca8c7587bd40aaa\"\u003e\u003ccode\u003e03f17c2\u003c/code\u003e\u003c/a\u003e deps: qs@^6.14.1 (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/689\"\u003e#689\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/ea1f25e503c1b2f7ba6f8562724ae0fcd247fb75\"\u003e\u003ccode\u003eea1f25e\u003c/code\u003e\u003c/a\u003e docs: use standard jsdoc tags everywhere (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/d7deef8ec61307fa28c22bc443cf8ed2f267945a\"\u003e\u003ccode\u003ed7deef8\u003c/code\u003e\u003c/a\u003e docs: update URL-encoded parser description to include ISO-8859-1 encoding su...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/b6f52aabc65137c5227c8a462bddb761daeb96e7\"\u003e\u003ccode\u003eb6f52aa\u003c/code\u003e\u003c/a\u003e docs: release notes for the v1.20.4 release (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/674\"\u003e#674\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/2965ca4af4883109cb2f651f4ce12da310902a0c\"\u003e\u003ccode\u003e2965ca4\u003c/code\u003e\u003c/a\u003e docs: update links (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/673\"\u003e#673\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/d96b63da8d7445de317736471633bac83ec76cbb\"\u003e\u003ccode\u003ed96b63d\u003c/code\u003e\u003c/a\u003e 2.2.1 (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/659\"\u003e#659\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/b204886a6744b0b6d297cd0e849d75de836f3b63\"\u003e\u003ccode\u003eb204886\u003c/code\u003e\u003c/a\u003e sec: security patch for CVE-2025-13466\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/e20e3512e085c1162e8ffe36ac65c705a8017251\"\u003e\u003ccode\u003ee20e351\u003c/code\u003e\u003c/a\u003e feat: remove \u003ccode\u003ehistory.md\u003c/code\u003e from being packaged on publish (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/660\"\u003e#660\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/expressjs/body-parser/compare/v2.2.0...v2.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `path-to-regexp` from 8.2.0 to 8.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/pillarjs/path-to-regexp/releases\"\u003epath-to-regexp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.4.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eImportant\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-4926\"\u003eCVE-2026-4926\u003c/a\u003e (\u003ca href=\"https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-j3q9-mxjg-w52f\"\u003eGHSA-j3q9-mxjg-w52f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-4923\"\u003eCVE-2026-4923\u003c/a\u003e (\u003ca href=\"https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-27v5-c462-wpq7\"\u003eGHSA-27v5-c462-wpq7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRestricts wildcard backtracking when using more than 1 in a path (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/pull/421\"\u003epillarjs/path-to-regexp#421\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDedupes regex prefixes (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/pull/422\"\u003epillarjs/path-to-regexp#422\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThis will result in shorter regular expressions for some cases using optional groups\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eRejects large optional route combinations (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/pull/424\"\u003epillarjs/path-to-regexp#424\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eWhen using groups such as \u003ccode\u003e/users{/delete}\u003c/code\u003e it will restrict the number of generated combinations to \u0026lt; 256, equivalent to 8 top-level optional groups and unlikely to occur in a real world application, but avoids exploding the regex size for applications that accept user created routes\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.3.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd custom error class (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/398\"\u003e#398\u003c/a\u003e)  2a7f2a4\u003c/li\u003e\n\u003cli\u003eAllow plain objects for \u003ccode\u003eTokenData\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/391\"\u003e#391\u003c/a\u003e)  687a9bb\u003c/li\u003e\n\u003cli\u003eEscape text should escape backslash (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/390\"\u003e#390\u003c/a\u003e)  a4a8552\u003c/li\u003e\n\u003cli\u003eImproved error messages and stack size (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/363\"\u003e#363\u003c/a\u003e)  a6bdf40\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eOther\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eMinifying the parser\n\u003cul\u003e\n\u003cli\u003ePR (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/401\"\u003e#401\u003c/a\u003e)  9df2448\u003c/li\u003e\n\u003cli\u003ePR (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/395\"\u003e#395\u003c/a\u003e)  4a91505\u003c/li\u003e\n\u003cli\u003eShaving some bytes  d63f44b\u003c/li\u003e\n\u003cli\u003eRemove optional operator  973d15c\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/compare/v8.2.0...v8.3.0\"\u003ehttps://github.com/pillarjs/path-to-regexp/compare/v8.2.0...v8.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/34cb451ddaeea4783a2fe60579ffb3e4ccfc73a7\"\u003e\u003ccode\u003e34cb451\u003c/code\u003e\u003c/a\u003e 8.4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/22a967901afc8b2b42eefe456faa7b6773dcc415\"\u003e\u003ccode\u003e22a9679\u003c/code\u003e\u003c/a\u003e Reject large optional route combinations (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/424\"\u003e#424\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/8881a88930cf96ebaa00412a8e87cdd601bb3f3d\"\u003e\u003ccode\u003e8881a88\u003c/code\u003e\u003c/a\u003e Byte optimization (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/423\"\u003e#423\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/43669ac637fe70fad33693d145a74d98179152ce\"\u003e\u003ccode\u003e43669ac\u003c/code\u003e\u003c/a\u003e Dedupe regex prefixes (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/422\"\u003e#422\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/48646547da685c1ccb76a95fe23373975a91e200\"\u003e\u003ccode\u003e4864654\u003c/code\u003e\u003c/a\u003e Restrict repeated wildcard backtracking (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/421\"\u003e#421\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/05a5a973702a863fb69415294503d13cb9d18b20\"\u003e\u003ccode\u003e05a5a97\u003c/code\u003e\u003c/a\u003e Remove dependabot config (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/404\"\u003e#404\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/5b635cd1bd1d6d7ed6023d8834ae6e6a1e22461f\"\u003e\u003ccode\u003e5b635cd\u003c/code\u003e\u003c/a\u003e Remove \u003ccode\u003epackage-lock.json\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/407\"\u003e#407\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/c4f5b3fc10782a5de2bee55c3e40e5af890c9cad\"\u003e\u003ccode\u003ec4f5b3f\u003c/code\u003e\u003c/a\u003e 8.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/6587c812746cba94855867612f3a719bb25f794e\"\u003e\u003ccode\u003e6587c81\u003c/code\u003e\u003c/a\u003e Move parameter name errors up in docs (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/402\"\u003e#402\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/9df2448fdfca9d2957cf47a1777b5deda9be18cf\"\u003e\u003ccode\u003e9df2448\u003c/code\u003e\u003c/a\u003e Remove more bytes from parser (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/401\"\u003e#401\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/pillarjs/path-to-regexp/compare/v8.2.0...v8.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.14.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.14.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `picomatch` from 2.3.1 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/releases\"\u003epicomatch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.2\u003c/h2\u003e\n\u003cp\u003eThis is a security release fixing several security relevant issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: exception when glob pattern contains constructor by \u003ca href=\"https://github.com/Jason3S\"\u003e\u003ccode\u003e@​Jason3S\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/micromatch/picomatch/pull/144\"\u003emicromatch/picomatch#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj\"\u003eCVE-2026-33671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p\"\u003eCVE-2026-33672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ehttps://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md\"\u003epicomatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eAll notable changes to this project will be documented in this file.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e4.0.0 (2024-02-07)\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad text values in parse \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/126\"\u003e#126\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/connor4312\"\u003e\u003ccode\u003e@​connor4312\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove process global to work outside of node \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/129\"\u003e#129\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/styfle\"\u003e\u003ccode\u003e@​styfle\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sideEffects to package.json \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/128\"\u003e#128\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/frandiox\"\u003e\u003ccode\u003e@​frandiox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003eos\u003c/code\u003e, make compatible browser environment. See \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/124\"\u003e#124\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/gwsbhqt\"\u003e\u003ccode\u003e@​gwsbhqt\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.1\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/81cba8d4b767cab3cb29d26eb4f691eed75b73b2\"\u003e\u003ccode\u003e81cba8d\u003c/code\u003e\u003c/a\u003e Publish 2.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/fc1f6b69006e9435caf8fb40d8aff378bc0b7bce\"\u003e\u003ccode\u003efc1f6b6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/eec17aee5428a7249e9ca5adbb8a0d28fa29619b\"\u003e\u003ccode\u003eeec17ae\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/78f8ca4362d9e66cadea97b93e292f10096452ed\"\u003e\u003ccode\u003e78f8ca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/156\"\u003e#156\u003c/a\u003e from micromatch/backport-144\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/3f4f10eaa65bf3a52e8f2999674cd27e11fa3c9b\"\u003e\u003ccode\u003e3f4f10e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/144\"\u003e#144\u003c/a\u003e from Jason3S/jdent-object-properties\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `yauzl` from 3.2.0 to 3.2.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/c4695215b05c6adffda613b9051a2a85429b33fe\"\u003e\u003ccode\u003ec469521\u003c/code\u003e\u003c/a\u003e version 3.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/00c561b8cf1ff92e076f7087ac6287e510d4af54\"\u003e\u003ccode\u003e00c561b\u003c/code\u003e\u003c/a\u003e fix bounds checking logic on NtfsTimestamp\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/277b294d23fc1c10ff772fa5e858830ca79d9892\"\u003e\u003ccode\u003e277b294\u003c/code\u003e\u003c/a\u003e comment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/de292f220268473eb20aef64b0a77faa9d004d9a\"\u003e\u003ccode\u003ede292f2\u003c/code\u003e\u003c/a\u003e streamed zip file test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/e00f13978fe284d60199014f567fb9efc4df8499\"\u003e\u003ccode\u003ee00f139\u003c/code\u003e\u003c/a\u003e truncate long test file names for eCryptfs compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/d98e05247dc7b95f5f0bcd336a81aca6d8563b95\"\u003e\u003ccode\u003ed98e052\u003c/code\u003e\u003c/a\u003e fix name of Info-ZIP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/a8951a29884b9506b695575037bee608b09592cc\"\u003e\u003ccode\u003ea8951a2\u003c/code\u003e\u003c/a\u003e update readme\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/thejoshwolfe/yauzl/compare/3.2.0...3.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diff` from 7.0.0 to 8.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/631\"\u003e#631\u003c/a\u003e - \u003cstrong\u003efix support for using an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e with \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e. This has been almost completely broken since the feature was added in v6.0.0, since it would outright crash on any text that featured two consecutive newlines between a pair of words (a very common case).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/635\"\u003e#635\u003c/a\u003e - \u003cstrong\u003esmall tweaks to tokenization behaviour of \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e when used \u003cem\u003ewithout\u003c/em\u003e an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e. Specifically, the soft hyphen (U+00AD) is no longer considered to be a word break, and the multiplication and division signs (\u003ccode\u003e×\u003c/code\u003e and \u003ccode\u003e÷\u003c/code\u003e) are now treated as punctuation instead of as letters / word characters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/641\"\u003e#641\u003c/a\u003e - \u003cstrong\u003ethe format of file headers in \u003ccode\u003ecreatePatch\u003c/code\u003e etc. patches can now be customised somewhat\u003c/strong\u003e. It now takes a \u003ccode\u003eheaderOptions\u003c/code\u003e option that can be used to disable the file headers entirely, or omit the \u003ccode\u003eIndex:\u003c/code\u003e line and/or the underline. In particular, this was motivated by a request to make jsdiff patches compatible with react-diff-view, which they now are if produced with \u003ccode\u003eheaderOptions: FILE_HEADERS_ONLY\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003e#647\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003e#649\u003c/a\u003e - \u003cstrong\u003efix denial-of-service vulnerabilities in \u003ccode\u003eparsePatch\u003c/code\u003e whereby adversarial input could cause a memory-leaking infinite loop, typically crashing the calling process\u003c/strong\u003e. Also fixed ReDOS vulnerabilities whereby adversarially-crafted patch headers could take cubic time to parse. Now, \u003ccode\u003eparsePatch\u003c/code\u003e should reliably take linear time. (Handling of headers that include the line break characters \u003ccode\u003e\\r\u003c/code\u003e, \u003ccode\u003e\\u2028\u003c/code\u003e, or \u003ccode\u003e\\u2029\u003c/code\u003e in non-trailing positions is also now more reasonable as side effect of the fix.)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/616\"\u003e#616\u003c/a\u003e \u003cstrong\u003eRestored compatibility of \u003ccode\u003ediffSentences\u003c/code\u003e with old Safari versions.\u003c/strong\u003e This was broken in 8.0.0 by the introduction of a regex with a \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Regular_expressions/Lookbehind_assertion\"\u003elookbehind assertion\u003c/a\u003e; these weren't supported in Safari prior to version 16.4.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/612\"\u003e#612\u003c/a\u003e \u003cstrong\u003eImproved tree shakeability\u003c/strong\u003e by marking the built CJS and ESM packages with \u003ccode\u003esideEffects: false\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/610\"\u003e#610\u003c/a\u003e \u003cstrong\u003eFixes types for \u003ccode\u003ediffJson\u003c/code\u003e which were broken by 8.0.0\u003c/strong\u003e. The new bundled types in 8.0.0 only allowed \u003ccode\u003ediffJson\u003c/code\u003e to be passed string arguments, but it should've been possible to pass either strings or objects (and now is). Thanks to Josh Kelley for the fix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/580\"\u003e#580\u003c/a\u003e \u003cstrong\u003eMultiple tweaks to \u003ccode\u003ediffSentences\u003c/code\u003e\u003c/strong\u003e:\n\u003cul\u003e\n\u003cli\u003etokenization no longer takes quadratic time on pathological inputs (reported as a ReDOS vulnerability by Snyk); is now linear instead\u003c/li\u003e\n\u003cli\u003ethe final sentence in the string is now handled the same by the tokenizer regardless of whether it has a trailing punctuation mark or not. (Previously, \u0026quot;foo. bar.\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; \u0026quot;, \u0026quot;bar.\u0026quot;]\u003c/code\u003e but \u0026quot;foo. bar\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; bar\u0026quot;]\u003c/code\u003e - i.e. whether the space between sentences was treated as a separate token depended upon whether the final sentence had trailing punctuation or not. This was arbitrary and surprising; it is no longer the case.)\u003c/li\u003e\n\u003cli\u003ein a string that starts with a sentence end, like \u0026quot;! hello.\u0026quot;, the \u0026quot;!\u0026quot; is now treated as a separate sentence\u003c/li\u003e\n\u003cli\u003ethe README now correctly documents the tokenization behaviour (it was wrong before)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/581\"\u003e#581\u003c/a\u003e - \u003cstrong\u003efixed some regex operations used for tokenization in \u003ccode\u003ediffWords\u003c/code\u003e taking O(n^2) time\u003c/strong\u003e in pathological cases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/595\"\u003e#595\u003c/a\u003e - \u003cstrong\u003efixed a crash in patch creation functions when handling a single hunk consisting of a very large number (e.g. \u0026gt;130k) of lines\u003c/strong\u003e. (This was caused by spreading indefinitely-large arrays to \u003ccode\u003e.push()\u003c/code\u003e using \u003ccode\u003e.apply\u003c/code\u003e or the spread operator and hitting the JS-implementation-specific limit on the maximum number of arguments to a function, as shown at \u003ca href=\"https://stackoverflow.com/a/56809779/1709587\"\u003ehttps://stackoverflow.com/a/56809779/1709587\u003c/a\u003e; thus the exact threshold to hit the error will depend on the environment in which you were running JsDiff.)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/596\"\u003e#596\u003c/a\u003e - \u003cstrong\u003eremoved the \u003ccode\u003emerge\u003c/code\u003e function\u003c/strong\u003e. Previously JsDiff included an undocumented function called \u003ccode\u003emerge\u003c/code\u003e that was meant to, in some sense, merge patches. It had at least a couple of serious bugs that could lead to it returning unambiguously wrong results, and it was difficult to simply \u0026quot;fix\u0026quot; because it was \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/181#issuecomment-2198319542\"\u003eunclear precisely what it was meant to do\u003c/a\u003e. For now, the fix is to remove it entirely.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/591\"\u003e#591\u003c/a\u003e - JsDiff's source code has been rewritten in TypeScript. This change entails the following changes for end users:\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ethe \u003ccode\u003ediff\u003c/code\u003e package on npm now includes its own TypeScript type definitions\u003c/strong\u003e. Users who previously used the \u003ccode\u003e@types/diff\u003c/code\u003e npm package from DefinitelyTyped should remove that dependency when upgrading JsDiff to v8.\u003c/p\u003e\n\u003cp\u003eNote that the transition from the...\n\n_Description has been truncated_","html_url":"https://github.com/EthanThePhoenix38/playwright/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/EthanThePhoenix38%2Fplaywright/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"},{"uuid":"4140904914","node_id":"PR_kwDOI8dS2c7Nl1Wx","number":87,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 1 directory with 23 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-26T23:26:36.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-26T05:57:55.000Z","updated_at":"2026-03-26T23:26:38.000Z","time_to_close":62921,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":23,"packages":[{"name":"tsup","old_version":"7.1.0","new_version":"8.3.5","repository_url":"https://github.com/egoist/tsup"},{"name":"@nestjs/common","old_version":"10.4.4","new_version":"10.4.16","repository_url":"https://github.com/nestjs/nest"},{"name":"@apollo/server","old_version":"4.11.3","new_version":"5.4.0","repository_url":"https://github.com/apollographql/apollo-server"},{"name":"nodemailer","old_version":"7.0.5","new_version":"7.0.11","repository_url":"https://github.com/nodemailer/nodemailer"},{"name":"mjml","old_version":"4.15.3","new_version":"4.18.0","repository_url":"https://github.com/mjmlio/mjml"},{"name":"@babel/traverse","old_version":"7.21.3","new_version":"7.29.0","repository_url":"https://github.com/babel/babel"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"axios","old_version":"1.3.4","new_version":"1.13.6","repository_url":"https://github.com/axios/axios"},{"name":"ejs","old_version":"3.1.9","new_version":"3.1.10","repository_url":"https://github.com/mde/ejs"},{"name":"flatted","old_version":"3.2.7","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"semver","old_version":"5.7.1","new_version":"5.7.2","repository_url":"https://github.com/npm/node-semver"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"tar","old_version":"6.1.13","new_version":"6.2.1","repository_url":"https://github.com/isaacs/node-tar"},{"name":"validator","old_version":"13.15.15","new_version":"13.15.26","repository_url":"https://github.com/validatorjs/validator.js"},{"name":"vite","old_version":"7.1.2","new_version":"7.3.1","repository_url":"https://github.com/vitejs/vite"},{"name":"ws","old_version":"7.5.9","new_version":"7.5.10","repository_url":"https://github.com/websockets/ws"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 19 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [tsup](https://github.com/egoist/tsup) | `7.1.0` | `8.3.5` |\n| [@nestjs/common](https://github.com/nestjs/nest/tree/HEAD/packages/common) | `10.4.4` | `10.4.16` |\n| [@apollo/server](https://github.com/apollographql/apollo-server/tree/HEAD/packages/server) | `4.11.3` | `5.4.0` |\n| [nodemailer](https://github.com/nodemailer/nodemailer) | `7.0.5` | `7.0.11` |\n| [mjml](https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml) | `4.15.3` | `4.18.0` |\n| [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.21.3` | `7.29.0` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [axios](https://github.com/axios/axios) | `1.3.4` | `1.13.6` |\n| [ejs](https://github.com/mde/ejs) | `3.1.9` | `3.1.10` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.2.7` | `3.4.2` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.13` | `6.2.1` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.15.15` | `13.15.26` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.1.2` | `7.3.1` |\n| [ws](https://github.com/websockets/ws) | `7.5.9` | `7.5.10` |\n\n\nUpdates `tsup` from 7.1.0 to 8.3.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/egoist/tsup/releases\"\u003etsup's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.3.5\u003c/h2\u003e\n\u003ch3\u003e   🐞 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRun \u003ccode\u003eexperimentalDts\u003c/code\u003e only once  -  by \u003ca href=\"https://github.com/aryaemami59\"\u003e\u003ccode\u003e@​aryaemami59\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1236\"\u003eegoist/tsup#1236\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/fddd451\"\u003e\u003c!-- raw HTML omitted --\u003e(fddd4)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.4...v8.3.5\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.4\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eNo significant changes\u003c/em\u003e\u003c/p\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.3...v8.3.4\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eNo significant changes\u003c/em\u003e\u003c/p\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.2...v8.3.3\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.1\u003c/h2\u003e\n\u003ch3\u003e   🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ees2024\u003c/code\u003e target  -  by \u003ca href=\"https://github.com/sxzz\"\u003e\u003ccode\u003e@​sxzz\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/4c8cd7f\"\u003e\u003c!-- raw HTML omitted --\u003e(4c8cd)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e   🐞 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport TS 5.6 for svelte  -  by \u003ca href=\"https://github.com/sxzz\"\u003e\u003ccode\u003e@​sxzz\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/28b9ce9\"\u003e\u003c!-- raw HTML omitted --\u003e(28b9c)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eneutral\u003c/code\u003e value to platform options in \u003ccode\u003eschema.json\u003c/code\u003e  -  by \u003ca href=\"https://github.com/venables\"\u003e\u003ccode\u003e@​venables\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/982\"\u003eegoist/tsup#982\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/a03db4c\"\u003e\u003c!-- raw HTML omitted --\u003e(a03db)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWider restriction for \u003ccode\u003etarget\u003c/code\u003e option  -  by \u003ca href=\"https://github.com/odanado\"\u003e\u003ccode\u003e@​odanado\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1118\"\u003eegoist/tsup#1118\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/1979b06\"\u003e\u003c!-- raw HTML omitted --\u003e(1979b)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eterser\u003c/code\u003e value to \u003ccode\u003eminify\u003c/code\u003e option in \u003ccode\u003eschema.json\u003c/code\u003e  -  by \u003ca href=\"https://github.com/damienbutt\"\u003e\u003ccode\u003e@​damienbutt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/991\"\u003eegoist/tsup#991\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/34951bf\"\u003e\u003c!-- raw HTML omitted --\u003e(34951)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003enewlineKind\u003c/code\u003e to \u003ccode\u003elf\u003c/code\u003e for \u003ccode\u003eexperimentalDts\u003c/code\u003e  -  by \u003ca href=\"https://github.com/aryaemami59\"\u003e\u003ccode\u003e@​aryaemami59\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1234\"\u003eegoist/tsup#1234\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/4584b89\"\u003e\u003c!-- raw HTML omitted --\u003e(4584b)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable rollup \u003ccode\u003eoutput.compact\u003c/code\u003e when minify is enabled  -  by \u003ca href=\"https://github.com/hyrious\"\u003e\u003ccode\u003e@​hyrious\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1232\"\u003eegoist/tsup#1232\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/9cc86d6\"\u003e\u003c!-- raw HTML omitted --\u003e(9cc86)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eNode16\u003c/code\u003e and \u003ccode\u003eNodeNext\u003c/code\u003e module resolution in \u003ccode\u003eexperimentalDts\u003c/code\u003e  -  by \u003ca href=\"https://github.com/aryaemami59\"\u003e\u003ccode\u003e@​aryaemami59\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1225\"\u003eegoist/tsup#1225\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/41c98ff\"\u003e\u003c!-- raw HTML omitted --\u003e(41c98)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.0...v8.3.1\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/egoist/tsup/compare/v8.2.4...v8.3.0\"\u003e8.3.0\u003c/a\u003e (2024-09-17)\u003c/h1\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ccode\u003eexperimentalDts\u003c/code\u003e file cleaning and watching (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1199\"\u003e#1199\u003c/a\u003e) (\u003ca href=\"https://github.com/egoist/tsup/commit/76dc18b7036c408e6fc5254e3eeb3430f65c7866\"\u003e76dc18b\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for \u003ccode\u003ects\u003c/code\u003e and \u003ccode\u003emts\u003c/code\u003e config files (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1178\"\u003e#1178\u003c/a\u003e) (\u003ca href=\"https://github.com/egoist/tsup/commit/ec811b3b7d22479c230292a024f1dee5d171b0ea\"\u003eec811b3\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd support for async \u003ccode\u003einjectStyle\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1193\"\u003e#1193\u003c/a\u003e) (\u003ca href=\"https://github.com/egoist/tsup/commit/f25a9db77d22c91ea8f6bd1ed31ea8415d0a7d5d\"\u003ef25a9db\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev8.2.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/egoist/tsup/compare/v8.2.3...v8.2.4\"\u003e8.2.4\u003c/a\u003e (2024-08-02)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/cd03e1e00ec2bd6676ae1837cbc7e618ab6a2362\"\u003e\u003ccode\u003ecd03e1e\u003c/code\u003e\u003c/a\u003e chore: release v8.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/fddd451c3d63cd5f851a0e7ab091c0550e24f213\"\u003e\u003ccode\u003efddd451\u003c/code\u003e\u003c/a\u003e fix: run \u003ccode\u003eexperimentalDts\u003c/code\u003e only once (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1236\"\u003e#1236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/21b119374880e9d9109c5d8658429678a1de8f45\"\u003e\u003ccode\u003e21b1193\u003c/code\u003e\u003c/a\u003e chore: release v8.3.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/580e03dc996107c4790c64df5b9ca6cebb4b7de9\"\u003e\u003ccode\u003e580e03d\u003c/code\u003e\u003c/a\u003e ci: fix release workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/01b38f295f6e1fa240676213817a9d315fdffd60\"\u003e\u003ccode\u003e01b38f2\u003c/code\u003e\u003c/a\u003e chore: release v8.3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/4f5b71e42887a5147ee6d95d2d7f89f789887f0d\"\u003e\u003ccode\u003e4f5b71e\u003c/code\u003e\u003c/a\u003e ci: fix release workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/e80dad6889366941e015faadce05cbe2eeca3c17\"\u003e\u003ccode\u003ee80dad6\u003c/code\u003e\u003c/a\u003e chore: release v8.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/f4af79a1b890307a28d0d986a0c06dc92192c222\"\u003e\u003ccode\u003ef4af79a\u003c/code\u003e\u003c/a\u003e ci: fix release workflow (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1241\"\u003e#1241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/4b72d61a8e7a2e450e71ffe8806739f2e1122f54\"\u003e\u003ccode\u003e4b72d61\u003c/code\u003e\u003c/a\u003e chore: release v8.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/41c98ff07aa03ef0e9d65407b20c9465acbf0d83\"\u003e\u003ccode\u003e41c98ff\u003c/code\u003e\u003c/a\u003e fix: support \u003ccode\u003eNode16\u003c/code\u003e and \u003ccode\u003eNodeNext\u003c/code\u003e module resolution in \u003ccode\u003eexperimentalDts\u003c/code\u003e (...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/egoist/tsup/compare/v7.1.0...v8.3.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/common` from 10.4.4 to 10.4.16\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/nest/releases\"\u003e\u003ccode\u003e@​nestjs/common\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev10.4.16\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(common): introduce magic file type validator to nestjs common by \u003ca href=\"https://github.com/Chathula\"\u003e\u003ccode\u003e@​Chathula\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14948\"\u003enestjs/nest#14948\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v10.4.15...v10.4.16\"\u003ehttps://github.com/nestjs/nest/compare/v10.4.15...v10.4.16\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev10.4.15 (2024-12-09)\u003c/h2\u003e\n\u003ch4\u003eDependencies\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eplatform-express\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14282\"\u003e#14282\u003c/a\u003e fix(deps): update dependency express to v4.21.2 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev10.4.13 (2024-12-03)\u003c/h2\u003e\n\u003ch4\u003eBug fixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecommon\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14256\"\u003e#14256\u003c/a\u003e chore(common): Add type declaration for RawBody decorator with pipes (\u003ca href=\"https://github.com/sapenlei\"\u003e\u003ccode\u003e@​sapenlei\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDependencies\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14257\"\u003e#14257\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​fastify/static\u003c/code\u003e to v7.0.4 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14258\"\u003e#14258\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​nestjs/sequelize\u003c/code\u003e to v10.0.1 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14249\"\u003e#14249\u003c/a\u003e chore(deps): bump \u003ccode\u003e@​apollo/gateway\u003c/code\u003e from 2.4.8 to 2.8.5 in /sample/32-graphql-federation-schema-first/users-application (\u003ca href=\"https://github.com/apps/dependabot\"\u003e\u003ccode\u003e@​dependabot[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14250\"\u003e#14250\u003c/a\u003e chore(deps): update jest monorepo (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14245\"\u003e#14245\u003c/a\u003e chore(deps): update dependency mqtt to v5.10.3 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14247\"\u003e#14247\u003c/a\u003e fix(deps): update nest monorepo to v10.4.12 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14251\"\u003e#14251\u003c/a\u003e chore(deps-dev): bump graphql-tools from 9.0.3 to 9.0.5 (\u003ca href=\"https://github.com/apps/dependabot\"\u003e\u003ccode\u003e@​dependabot[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14246\"\u003e#14246\u003c/a\u003e chore(deps): update nest monorepo (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 3\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eKamil Mysliwiec (\u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMicael Levi L. Cavalcante (\u003ca href=\"https://github.com/micalevisk\"\u003e\u003ccode\u003e@​micalevisk\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esapenlei (\u003ca href=\"https://github.com/sapenlei\"\u003e\u003ccode\u003e@​sapenlei\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev10.4.12 (2024-11-29)\u003c/h2\u003e\n\u003ch4\u003eBug fixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecommon\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14241\"\u003e#14241\u003c/a\u003e fix(common): enforce string type in validationpipe (\u003ca href=\"https://github.com/LhonRafaat\"\u003e\u003ccode\u003e@​LhonRafaat\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDependencies\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eOther\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14243\"\u003e#14243\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/node\u003c/code\u003e to v20.17.9 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14240\"\u003e#14240\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/multer\u003c/code\u003e to v1.4.12 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14239\"\u003e#14239\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/chai\u003c/code\u003e to v4.3.20 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14237\"\u003e#14237\u003c/a\u003e chore(deps): update confluentinc/cp-zookeeper docker tag to v7.7.2 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14236\"\u003e#14236\u003c/a\u003e chore(deps): update confluentinc/cp-kafka docker tag to v7.7.2 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/12253\"\u003e#12253\u003c/a\u003e fix(deps): update apollo graphql packages (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14235\"\u003e#14235\u003c/a\u003e chore(deps-dev): bump \u003ccode\u003e@​commitlint/config-angular\u003c/code\u003e from 19.5.0 to 19.6.0 (\u003ca href=\"https://github.com/apps/dependabot\"\u003e\u003ccode\u003e@​dependabot[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14233\"\u003e#14233\u003c/a\u003e chore(deps): update nest monorepo (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6c8aec63b4828ecb96dd62c5c5edb838539c45e6\"\u003e\u003ccode\u003e6c8aec6\u003c/code\u003e\u003c/a\u003e chore(\u003ca href=\"https://github.com/nestjs\"\u003e\u003ccode\u003e@​nestjs\u003c/code\u003e\u003c/a\u003e) publish v10.4.16 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/2b9e132f6a3bb60f450076d0eacbef23be17a3c0\"\u003e\u003ccode\u003e2b9e132\u003c/code\u003e\u003c/a\u003e chore: update outdated tests, make file-type optional\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/cb0d6506b34f771c3946be1c6b980abaad31a348\"\u003e\u003ccode\u003ecb0d650\u003c/code\u003e\u003c/a\u003e chore: remove duplicate packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6196ab21502e762e4f497867a7f265047b4e0cd6\"\u003e\u003ccode\u003e6196ab2\u003c/code\u003e\u003c/a\u003e Merge branch 'Chathula-fix-nestjs-common-mime-validator'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/0ac7959927d0787a19039ed9eafe61d15ed10143\"\u003e\u003ccode\u003e0ac7959\u003c/code\u003e\u003c/a\u003e chore: minor tweaks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/312a54ae2e20bd294ef1ccd5b6ca8476714c8a5a\"\u003e\u003ccode\u003e312a54a\u003c/code\u003e\u003c/a\u003e Update packages/common/pipes/file/file-type.validator.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/a28fc033f49ce7ec0432478a52d2a9a518d896d4\"\u003e\u003ccode\u003ea28fc03\u003c/code\u003e\u003c/a\u003e refactor(common): move back file type validator options type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/07b4b3829ebefc897ad547a08d9e954e5d13f2ce\"\u003e\u003ccode\u003e07b4b38\u003c/code\u003e\u003c/a\u003e refactor(common): move file-type package to peer dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/0b7af8ab0777ba6fcebaa4c9c958b77b1fb95326\"\u003e\u003ccode\u003e0b7af8a\u003c/code\u003e\u003c/a\u003e refactor(common): refactor code to use simple eval\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6953b7a79e3e326eac01875806ee3f984fe702da\"\u003e\u003ccode\u003e6953b7a\u003c/code\u003e\u003c/a\u003e fix(common): used eval import\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nestjs/nest/commits/v10.4.16/packages/common\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@apollo/server` from 4.11.3 to 5.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apollographql/apollo-server/releases\"\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server-integration-testsuite\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.4.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.4.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/phryneas\"\u003e\u003ccode\u003e@​phryneas\u003c/code\u003e\u003c/a\u003e! - ⚠️ SECURITY \u003ccode\u003e@apollo/server/standalone\u003c/code\u003e:\u003c/p\u003e\n\u003cp\u003eThe default configuration of \u003ccode\u003estartStandaloneServer\u003c/code\u003e was vulnerable to denial of service (DoS) attacks through specially crafted request bodies with exotic character set encodings.\u003c/p\u003e\n\u003cp\u003eIn accordance with \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc7159#section-8.1\"\u003eRFC 7159\u003c/a\u003e, we now only accept request bodies encoded in UTF-8, UTF-16 (LE or BE), or UTF-32 (LE or BE).\nAny other character set will be rejected with a \u003ccode\u003e415 Unsupported Media Type\u003c/code\u003e error.\nNote that the more recent JSON RFC, \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc8259#section-8.1\"\u003eRFC 8259\u003c/a\u003e, is more strict and will only allow UTF-8.\nSince this is a minor release, we have chosen to remain compatible with the more permissive RFC 7159 for now.\nIn a future major release, we may tighten this restriction further to only allow UTF-8.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eIf you were not using \u003ccode\u003estartStandaloneServer\u003c/code\u003e, you were not affected by this vulnerability.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eGenerally, please note that we provide \u003ccode\u003estartStandaloneServer\u003c/code\u003e as a convenience tool for quickly getting started with Apollo Server.\nFor production deployments, we recommend using Apollo Server with a more fully-featured web server framework such as Express, Koa, or Fastify, where you have more control over security-related configuration options.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server-integration-testsuite\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.3.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.3.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8062\"\u003e#8062\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/cristunaranjo\"\u003e\u003ccode\u003e@​cristunaranjo\u003c/code\u003e\u003c/a\u003e! - Allow configuration of graphql execution options (maxCoercionErrors)\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n  resolvers,\n  executionOptions: {\n    maxCoercionErrors: 50,\n  },\n});\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8014\"\u003e#8014\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/mo4islona\"\u003e\u003ccode\u003e@​mo4islona\u003c/code\u003e\u003c/a\u003e! - Expose \u003ccode\u003egraphql\u003c/code\u003e validation options.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apollographql/apollo-server/blob/main/packages/server/CHANGELOG.md\"\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.4.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/phryneas\"\u003e\u003ccode\u003e@​phryneas\u003c/code\u003e\u003c/a\u003e! - ⚠️ SECURITY \u003ccode\u003e@apollo/server/standalone\u003c/code\u003e:\u003c/p\u003e\n\u003cp\u003eThe default configuration of \u003ccode\u003estartStandaloneServer\u003c/code\u003e was vulnerable to denial of service (DoS) attacks through specially crafted request bodies with exotic character set encodings.\u003c/p\u003e\n\u003cp\u003eIn accordance with \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc7159#section-8.1\"\u003eRFC 7159\u003c/a\u003e, we now only accept request bodies encoded in UTF-8, UTF-16 (LE or BE), or UTF-32 (LE or BE).\nAny other character set will be rejected with a \u003ccode\u003e415 Unsupported Media Type\u003c/code\u003e error.\nNote that the more recent JSON RFC, \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc8259#section-8.1\"\u003eRFC 8259\u003c/a\u003e, is more strict and will only allow UTF-8.\nSince this is a minor release, we have chosen to remain compatible with the more permissive RFC 7159 for now.\nIn a future major release, we may tighten this restriction further to only allow UTF-8.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eIf you were not using \u003ccode\u003estartStandaloneServer\u003c/code\u003e, you were not affected by this vulnerability.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eGenerally, please note that we provide \u003ccode\u003estartStandaloneServer\u003c/code\u003e as a convenience tool for quickly getting started with Apollo Server.\nFor production deployments, we recommend using Apollo Server with a more fully-featured web server framework such as Express, Koa, or Fastify, where you have more control over security-related configuration options.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8062\"\u003e#8062\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/cristunaranjo\"\u003e\u003ccode\u003e@​cristunaranjo\u003c/code\u003e\u003c/a\u003e! - Allow configuration of graphql execution options (maxCoercionErrors)\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n  resolvers,\n  executionOptions: {\n    maxCoercionErrors: 50,\n  },\n});\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8014\"\u003e#8014\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/mo4islona\"\u003e\u003ccode\u003e@​mo4islona\u003c/code\u003e\u003c/a\u003e! - Expose \u003ccode\u003egraphql\u003c/code\u003e validation options.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n  resolvers,\n  validationOptions: {\n    maxErrors: 10,\n  },\n});\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/ad45d1505d867de4c2761b7935855445ef7641e7\"\u003e\u003ccode\u003ead45d15\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8179\"\u003e#8179\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/443e54747d44c1d7c213d019936514dec024b450\"\u003e\u003ccode\u003e443e547\u003c/code\u003e\u003c/a\u003e fix repository urls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/28d6d47ff636751807141267c329acb736c177b6\"\u003e\u003ccode\u003e28d6d47\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8172\"\u003e#8172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e feat: Allow configuration of graphql validation options \u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8014\"\u003e#8014\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/f2c16a7caff895a8b97c5a800405795cb19ba624\"\u003e\u003ccode\u003ef2c16a7\u003c/code\u003e\u003c/a\u003e bump dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e feat: Allow configuration of graphql execution options(maxCoercionErrors)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/7be3686ae62fb04bb4d0bfddb465d5e89631d4e4\"\u003e\u003ccode\u003e7be3686\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8163\"\u003e#8163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/51acbebde7cc2759efacaa9eccb10aa3fee6b368\"\u003e\u003ccode\u003e51acbeb\u003c/code\u003e\u003c/a\u003e Require legacy incremental execute as an \u003ccode\u003eApolloServer\u003c/code\u003e option instead of a d...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/ae1be2985814212bc4df3556c930cb84f7773381\"\u003e\u003ccode\u003eae1be29\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8155\"\u003e#8155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/apollographql/apollo-server/commits/@apollo/server@5.4.0/packages/server\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​apollo/server\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nodemailer` from 7.0.5 to 7.0.11\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodemailer/nodemailer/releases\"\u003enodemailer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.11\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.10...v7.0.11\"\u003e7.0.11\u003c/a\u003e (2025-11-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eprevent stack overflow DoS in addressparser with deeply nested groups (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003eb61b9c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.9...v7.0.10\"\u003e7.0.10\u003c/a\u003e (2025-10-23)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncrease data URI size limit from 100KB to 50MB and preserve content type (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e28dbf3f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.8...v7.0.9\"\u003e7.0.9\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e Trying to fix release proecess by upgrading Node version in runner (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/579fce4683eb588891613a6c9a00d8092e8c62d1\"\u003e579fce4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.7...v7.0.8\"\u003e7.0.8\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e flatten nested groups per RFC 5322 (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/8f8a77c67f0ba94ddf4e16c68f604a5920fb5d26\"\u003e8f8a77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.7\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.6...v7.0.7\"\u003e7.0.7\u003c/a\u003e (2025-10-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e Fixed addressparser handling of quoted nested email addresses (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626\"\u003e1150d99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edns:\u003c/strong\u003e add memory leak prevention for DNS cache (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/0240d6795ded6d8008d102161a729f120b6d786a\"\u003e0240d67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elinter:\u003c/strong\u003e Updated eslint and created prettier formatting task (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/df13b7487e368acded35e45d0887d23c89c9177a\"\u003edf13b74\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefresh expired DNS cache on error (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1759\"\u003e#1759\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/ea0fc5a6633a3546f4b00fcf2f428e9ca732cdb6\"\u003eea0fc5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve linter errors in DNS cache tests (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3b8982c1f24508089a8757b74039000a4498b158\"\u003e3b8982c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6\"\u003e7.0.6\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md\"\u003enodemailer's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.10...v7.0.11\"\u003e7.0.11\u003c/a\u003e (2025-11-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eprevent stack overflow DoS in addressparser with deeply nested groups (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003eb61b9c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.9...v7.0.10\"\u003e7.0.10\u003c/a\u003e (2025-10-23)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncrease data URI size limit from 100KB to 50MB and preserve content type (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e28dbf3f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.8...v7.0.9\"\u003e7.0.9\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e Trying to fix release proecess by upgrading Node version in runner (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/579fce4683eb588891613a6c9a00d8092e8c62d1\"\u003e579fce4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.7...v7.0.8\"\u003e7.0.8\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e flatten nested groups per RFC 5322 (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/8f8a77c67f0ba94ddf4e16c68f604a5920fb5d26\"\u003e8f8a77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.6...v7.0.7\"\u003e7.0.7\u003c/a\u003e (2025-10-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e Fixed addressparser handling of quoted nested email addresses (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626\"\u003e1150d99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edns:\u003c/strong\u003e add memory leak prevention for DNS cache (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/0240d6795ded6d8008d102161a729f120b6d786a\"\u003e0240d67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elinter:\u003c/strong\u003e Updated eslint and created prettier formatting task (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/df13b7487e368acded35e45d0887d23c89c9177a\"\u003edf13b74\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefresh expired DNS cache on error (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1759\"\u003e#1759\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/ea0fc5a6633a3546f4b00fcf2f428e9ca732cdb6\"\u003eea0fc5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve linter errors in DNS cache tests (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3b8982c1f24508089a8757b74039000a4498b158\"\u003e3b8982c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6\"\u003e7.0.6\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eencoder:\u003c/strong\u003e avoid silent data loss by properly flushing trailing base64 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1747\"\u003e#1747\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/01ae76f2cfe991c0c3fe80170f236da60531496b\"\u003e01ae76f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehandle multiple XOAUTH2 token requests correctly (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1754\"\u003e#1754\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/dbe00286351cddf012726a41a96ae613d30a34ee\"\u003edbe0028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReDoS vulnerability in parseDataURI and _processDataUrl (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1755\"\u003e#1755\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/90b3e24d23929ebf9f4e16261049b40ee4055a39\"\u003e90b3e24\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3d17dbec49ab3e3f0e13e62871e5534be5b99994\"\u003e\u003ccode\u003e3d17dbe\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.11 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1783\"\u003e#1783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/15879f8bd5a94fe608fd7cf1d3142de14527eadf\"\u003e\u003ccode\u003e15879f8\u003c/code\u003e\u003c/a\u003e Bumped dev dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003e\u003ccode\u003eb61b9c0\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow DoS in addressparser with deeply nested groups\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/4175e4baf92ffc4e20791a11fc0886025228a2ac\"\u003e\u003ccode\u003e4175e4b\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.10 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1776\"\u003e#1776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/d882ccfe8d37723e7017c1966608dcf8217d8a82\"\u003e\u003ccode\u003ed882ccf\u003c/code\u003e\u003c/a\u003e Merge branch 'master' of github.com:nodemailer/nodemailer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1d7e4f786bccdc3e0a1bf0140d07ce5aaf29d82a\"\u003e\u003ccode\u003e1d7e4f7\u003c/code\u003e\u003c/a\u003e Bumped deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/10bd871656b331a674feabbcfc1d6363918cb244\"\u003e\u003ccode\u003e10bd871\u003c/code\u003e\u003c/a\u003e chore: correct typo in variable name (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1773\"\u003e#1773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e\u003ccode\u003e28dbf3f\u003c/code\u003e\u003c/a\u003e fix: Increase data URI size limit from 100KB to 50MB and preserve content type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/92ae1c49e3a33767996db9ddfd04784a7b9595d7\"\u003e\u003ccode\u003e92ae1c4\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.9 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1769\"\u003e#1769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/c675d9e7e57d0d90bde7d71afb0b2739fc071233\"\u003e\u003ccode\u003ec675d9e\u003c/code\u003e\u003c/a\u003e Merge branch 'master' of github.com:nodemailer/nodemailer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for nodemailer since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `mjml` from 4.15.3 to 4.18.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/mjmlio/mjml/releases\"\u003emjml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eContent updates by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3021\"\u003emjmlio/mjml#3021\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mjmlio/mjml/compare/v4.17.2...v4.18.0\"\u003ehttps://github.com/mjmlio/mjml/compare/v4.17.2...v4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emj-section: do not inherit attributes from context \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3019\"\u003e#3019\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3020\"\u003emjmlio/mjml#3020\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mjmlio/mjml/compare/v4.17.1...v4.17.2\"\u003ehttps://github.com/mjmlio/mjml/compare/v4.17.1...v4.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emjml-wrapper: allowed attributes not inheriting \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3011\"\u003e#3011\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3012\"\u003emjmlio/mjml#3012\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mjmlio/mjml/compare/v4.17.0...v4.17.1\"\u003ehttps://github.com/mjmlio/mjml/compare/v4.17.0...v4.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emjml-wrapper: add gap between sections \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2977\"\u003e#2977\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3004\"\u003emjmlio/mjml#3004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emjml-social: respect align and icon-height attributes \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3001\"\u003e#3001\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3002\"\u003emjmlio/mjml#3002\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-carousel: hide thumbnails if not supported  \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2999\"\u003e#2999\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3000\"\u003emjmlio/mjml#3000\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-accordion: respect font-family and padding-x attributes  \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2997\"\u003e#2997\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2998\"\u003emjmlio/mjml#2998\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-table: respect cellspacing \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2995\"\u003e#2995\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2996\"\u003emjmlio/mjml#2996\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-navbar: fix ico-padding-x that was not working \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2991\"\u003e#2991\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2992\"\u003emjmlio/mjml#2992\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-column: fix border-radius that was not working \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2989\"\u003e#2989\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2990\"\u003emjmlio/mjml#2990\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded link to support matrix by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3005\"\u003emjmlio/mjml#3005\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate image URLs by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3007\"\u003emjmlio/mjml#3007\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExamples indenting by \u003ca href=\"https://github.com/EtienneHosman\"\u003e\u003ccode\u003e@​EtienneHosman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2974\"\u003emjmlio/mjml#2974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/7f4872c48af877d98448335fb9002585cfc8fcbf\"\u003e\u003ccode\u003e7f4872c\u003c/code\u003e\u003c/a\u003e v4.18.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/95b9ebdd28ce497f37d8c20160fbbd36df2d7d3e\"\u003e\u003ccode\u003e95b9ebd\u003c/code\u003e\u003c/a\u003e v4.17.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/3f3b0bcc5f297d9bc84999908c213bc42d9792eb\"\u003e\u003ccode\u003e3f3b0bc\u003c/code\u003e\u003c/a\u003e v4.17.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/375c593ce24485867db35a26218e9d89d4f386cc\"\u003e\u003ccode\u003e375c593\u003c/code\u003e\u003c/a\u003e v4.17.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/81f37eafac77ea80aeabb5ea4d7ffc4eb01263c3\"\u003e\u003ccode\u003e81f37ea\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2990\"\u003e#2990\u003c/a\u003e from mjmlio/bugfix/MJML-36-mj-column_border_radius\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/025e3fc31bb23422c8cde70332e1549249f380a1\"\u003e\u003ccode\u003e025e3fc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2992\"\u003e#2992\u003c/a\u003e from mjmlio/bugfix/MJML-37-mj-navbar_ico-padding-x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/424cac84c5286bf334982ed29a9e04ec3ec030a8\"\u003e\u003ccode\u003e424cac8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2996\"\u003e#2996\u003c/a\u003e from mjmlio/bugfix/MJML-39-mj-table-cellspacing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/4d975b09482a3aed157f92096a4ef29f9d0dfe3d\"\u003e\u003ccode\u003e4d975b0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2998\"\u003e#2998\u003c/a\u003e from mjmlio/bugfix/MJML-43-mj-accordion_font-family_...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/4d41b9d81eb08f930d93ed22d570192b9236d8e1\"\u003e\u003ccode\u003e4d41b9d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3000\"\u003e#3000\u003c/a\u003e from mjmlio/feature/MJML-49-mj-carousel_thumbnails_f...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/9bac7c6cb11cf88c0e9518a0b9e30262ea7414b1\"\u003e\u003ccode\u003e9bac7c6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3002\"\u003e#3002\u003c/a\u003e from mjmlio/bugfix/MJML-41-mj-social_align_icon-height\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/mjmlio/mjml/commits/v4.18.0/packages/mjml\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~totocap\"\u003etotocap\u003c/a\u003e, a new releaser for mjml since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/traverse` from 7.21.3 to 7.29.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/traverse\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.0 (2026-01-31)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e for your first PR!\u003c/p\u003e\n\u003ch4\u003e:rocket: New Feature\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17750\"\u003e#17750\u003c/a\u003e [7.x backport] Add attributes import declaration builder (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17663\"\u003e#17663\u003c/a\u003e [7.x backport] feat(standalone): export async transform (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17725\"\u003e#17725\u003c/a\u003e [7.x backport] feat: read standalone targets from data-targets (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17765\"\u003e#17765\u003c/a\u003e fix(parser): correctly parse type assertions in \u003ccode\u003eextends\u003c/code\u003e clause (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17723\"\u003e#17723\u003c/a\u003e [7.x backport] fix(parser): improve super type argument parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17708\"\u003e#17708\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentPath is given (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-block-scoping\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17737\"\u003e#17737\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates shadowing variable (\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17642\"\u003e#17642\u003c/a\u003e [Babel 7] Improve generator performance (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 6\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDavid (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aa8394e454337d118ac3d40bfa3ee1a3cb3f3ed2\"\u003e\u003ccode\u003eaa8394e\u003c/code\u003e\u003c/a\u003e v7.29.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/84366a8ea453814e732784db74cf2e2b6635eb6f\"\u003e\u003ccode\u003e84366a8\u003c/code\u003e\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentP...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/229eb452c5d5d2be0dc138ec2956aff7ff1057d7\"\u003e\u003ccode\u003e229eb45\u003c/code\u003e\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/905bc22b2fff23673eabe467815c67b29bf8bba2\"\u003e\u003ccode\u003e905bc22\u003c/code\u003e\u003c/a\u003e fix: lint errors in main branch (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17612\"\u003e#17612\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a03e2b63ae530674e866b60350b7eb4a5fcb5f59\"\u003e\u003ccode\u003ea03e2b6\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003epath.evaluate\u003c/code\u003e correctly returns \u003ccode\u003econfident\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17584\"\u003e#17584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aac2c37e11ad58905f7f9606103074e80bacbbcd\"\u003e\u003ccode\u003eaac2c37\u003c/code\u003e\u003c/a\u003e chore: Use Gulpfile.mts (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17579\"\u003e#17579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/65c4a6b3ee0e1d32801529e841572bb22534e1f3\"\u003e\u003ccode\u003e65c4a6b\u003c/code\u003e\u003c/a\u003e [Babel 8] fix: Improve \u003ccode\u003etraverse\u003c/code\u003e types (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17574\"\u003e#17574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c92c4919771105140015167f25f7bacac77c90d9\"\u003e\u003ccode\u003ec92c491\u003c/code\u003e\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17589\"\u003e#17589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.0/packages/babel-traverse\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/traverse\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.3.4 to 1.13.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.6\u003c/h2\u003e\n\u003cp\u003eThis release focuses on platform compatibility, error handling improvements, and code quality maintenance.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBreaking Changes:\u003c/strong\u003e None identified in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAction Required:\u003c/strong\u003e Users targeting React Native should verify their integration, particularly if relying on specific Blob or FormData behaviours, as improvements have been made to support these objects.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eReact Native Blob Support:\u003c/strong\u003e Axios now includes support for React Native Blob objects. Thanks to \u003ca href=\"https://github.com/moh3n9595\"\u003e\u003ccode\u003e@​moh3n9595\u003c/code\u003e\u003c/a\u003e for the initial implementation. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/5764\"\u003e#5764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCode Quality:\u003c/strong\u003e Implemented prettier across the codebase and resolved associated formatting issues. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7385\"\u003e#7385\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eEnvironment Compatibility:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed module exports for React Native and Browserify environments. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7386\"\u003e#7386\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded safe FormData detection for the WeChat Mini Program environment. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7324\"\u003e#7324\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAxiosError.message is now correctly enumerable. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7392\"\u003e#7392\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAxiosError.from now correctly copies the status property from the source error, ensuring better error propagation. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7403\"\u003e#7403\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Updated the development_dependencies group (5 updates). (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7432\"\u003e#7432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eInfrastructure:\u003c/strong\u003e Migrated \u003ccode\u003e@​rollup/plugin-babel\u003c/code\u003e from v5.3.1 to v6.1.0. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7424\"\u003e#7424\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocumentation:\u003c/strong\u003e Added missing JSDoc comments to utilities. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7427\"\u003e#7427\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors! Thank you for helping improve the project:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Gudahtt\"\u003e\u003ccode\u003e@​Gudahtt\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7386\"\u003e#7386\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ybbus\"\u003e\u003ccode\u003e@​ybbus\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7392\"\u003e#7392\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shiwaangee\"\u003e\u003ccode\u003e@​Shiwaangee\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7324\"\u003e#7324\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skrtheboss\"\u003e\u003ccode\u003e@​skrtheboss\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7403\"\u003e#7403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Janaka66\"\u003e\u003ccode\u003e@​Janaka66\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7427\"\u003e#7427\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moh3n9595\"\u003e\u003ccode\u003e@​moh3n9595\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/5764\"\u003e#5764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digital-wizard48\"\u003e\u003ccode\u003e@​digital-wizard48\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7424\"\u003e#7424\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cem\u003eFull Changelog: \u003ca href=\"https://github.com/axios/axios/compare/v1.13.5...v1.13.6\"\u003ev1.13.5...v1.13.6\u003c/a\u003e\u003c/em\u003e\u003c/p\u003e\n\u003ch2\u003ev1.13.5\u003c/h2\u003e\n\u003ch2\u003eRelease 1.13.5\u003c/h2\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fixed a potential \u003cstrong\u003eDenial of Service\u003c/strong\u003e issue involving the \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBug fix:\u003c/strong\u003e Resolved an issue where \u003ccode\u003eAxiosError\u003c/code\u003e could be missing the \u003ccode\u003estatus\u003c/code\u003e field on and after \u003cstrong\u003ev1.13.3\u003c/strong\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch4\u003eSecurity\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix Denial of Service via \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/stron...\n\n_Description has been truncated_","html_url":"https://github.com/SeedCompany/libs/pull/87","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/SeedCompany%2Flibs/issues/87","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/87/packages"},{"uuid":"4138230083","node_id":"PR_kwDOOQGnU87NebH4","number":41,"state":"closed","title":"build(deps): Bump the npm_and_yarn group across 6 directories with 19 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-26T03:04:38.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-25T20:14:15.000Z","updated_at":"2026-03-26T03:04:40.000Z","time_to_close":24623,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","group_name":"npm_and_yarn","update_count":19,"packages":[{"name":"aws-sdk","old_version":"2.1692.0","new_version":"2.1693.0","repository_url":"https://github.com/aws/aws-sdk-js"},{"name":"basic-ftp","old_version":"5.0.5","new_version":"5.2.0","repository_url":"https://github.com/patrickjuchli/basic-ftp"},{"name":"mongoose","old_version":"8.8.4","new_version":"8.9.5","repository_url":"https://github.com/Automattic/mongoose"},{"name":"multer","old_version":"1.4.5-lts.1","new_version":"2.1.1","repository_url":"https://github.com/expressjs/multer"},{"name":"mysql2","old_version":"2.3.3","new_version":"3.9.8","repository_url":"https://github.com/sidorares/node-mysql2"},{"name":"underscore","old_version":"1.13.7","new_version":"1.13.8","repository_url":"https://github.com/jashkenas/underscore"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"brace-expansion","old_version":"2.0.1","new_version":"2.0.2","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"glob","old_version":"10.4.5","new_version":"10.5.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"glob","old_version":"11.0.0","new_version":"11.1.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"minimatch","old_version":"5.1.6","new_version":"5.1.9","repository_url":"https://github.com/isaacs/minimatch"},{"name":"minimatch","old_version":"9.0.5","new_version":"9.0.9","repository_url":"https://github.com/isaacs/minimatch"},{"name":"fast-xml-parser","old_version":"4.5.0","new_version":"5.5.9","repository_url":"https://github.com/NaturalIntelligence/fast-xml-parser"},{"name":"formidable","old_version":"3.5.1","new_version":"3.5.4","repository_url":"https://github.com/node-formidable/formidable"},{"name":"json-bigint","old_version":"0.3.1","new_version":"1.0.0","repository_url":"https://github.com/sidorares/json-bigint"},{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"jws","old_version":"3.2.2","new_version":"3.2.3","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"on-headers","old_version":"1.0.2","new_version":"1.1.0","repository_url":"https://github.com/jshttp/on-headers"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 15 updates in the /Backend/admin directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk](https://github.com/aws/aws-sdk-js) | `2.1692.0` | `2.1693.0` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.0.5` | `5.2.0` |\n| [mongoose](https://github.com/Automattic/mongoose) | `8.8.4` | `8.9.5` |\n| [multer](https://github.com/expressjs/multer) | `1.4.5-lts.1` | `2.1.1` |\n| [mysql2](https://github.com/sidorares/node-mysql2) | `2.3.3` | `3.9.8` |\n| [underscore](https://github.com/jashkenas/underscore) | `1.13.7` | `1.13.8` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [glob](https://github.com/isaacs/node-glob) | `10.4.5` | `10.5.0` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `11.1.0` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `5.1.6` | `5.1.9` |\n| [minimatch](https://github.com/isaacs/minimatch) | `9.0.5` | `9.0.9` |\n| [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) | `4.5.0` | `5.5.9` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.1` | `3.5.4` |\n| [json-bigint](https://github.com/sidorares/json-bigint) | `0.3.1` | `1.0.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [on-headers](https://github.com/jshttp/on-headers) | `1.0.2` | `1.1.0` |\n\nBumps the npm_and_yarn group with 7 updates in the /Backend/cronjobs directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk](https://github.com/aws/aws-sdk-js) | `2.1692.0` | `2.1693.0` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.0.5` | `5.2.0` |\n| [mongoose](https://github.com/Automattic/mongoose) | `8.8.4` | `8.9.5` |\n| [underscore](https://github.com/jashkenas/underscore) | `1.13.7` | `1.13.8` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `5.1.6` | `5.1.9` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n\nBumps the npm_and_yarn group with 13 updates in the /Backend/desktop directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk](https://github.com/aws/aws-sdk-js) | `2.1692.0` | `2.1693.0` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.0.5` | `5.2.0` |\n| [mongoose](https://github.com/Automattic/mongoose) | `8.8.4` | `8.9.5` |\n| [multer](https://github.com/expressjs/multer) | `1.4.5-lts.1` | `2.1.1` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.14.2` |\n| [underscore](https://github.com/jashkenas/underscore) | `1.13.7` | `1.13.8` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [glob](https://github.com/isaacs/node-glob) | `10.4.5` | `10.5.0` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `9.0.5` | `9.0.9` |\n| [minimatch](https://github.com/isaacs/minimatch) | `5.1.6` | `5.1.9` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.1` | `3.5.4` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [on-headers](https://github.com/jshttp/on-headers) | `1.0.2` | `1.1.0` |\n\nBumps the npm_and_yarn group with 2 updates in the /Backend/migrations directory: [mongoose](https://github.com/Automattic/mongoose) and [underscore](https://github.com/jashkenas/underscore).\nBumps the npm_and_yarn group with 2 updates in the /Backend/productivity_report directory: [mongoose](https://github.com/Automattic/mongoose) and [redis](https://github.com/redis/node-redis).\nBumps the npm_and_yarn group with 3 updates in the /Backend/store-logs-api directory: [file-type](https://github.com/sindresorhus/file-type), [formidable](https://github.com/node-formidable/formidable) and [ini](https://github.com/npm/ini).\n\nUpdates `aws-sdk` from 2.1692.0 to 2.1693.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js/releases\"\u003eaws-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.1693.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/9d3c66eca8c4416a9d347d0703f27b65775d65ef\"\u003e\u003ccode\u003e9d3c66e\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1693.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c039567cee58b50a44f53f30318fa21f36c42ecc\"\u003e\u003ccode\u003ec039567\u003c/code\u003e\u003c/a\u003e test(client-elastictranscoder): remove feature test (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4711\"\u003e#4711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/f5b1a6f0aebb477204d979091d654649f29ad9ce\"\u003e\u003ccode\u003ef5b1a6f\u003c/code\u003e\u003c/a\u003e docs: end-of-support (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4706\"\u003e#4706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/657d6feb00447c8be1d65158a0ecc0585b70ed60\"\u003e\u003ccode\u003e657d6fe\u003c/code\u003e\u003c/a\u003e chore: use ssh private key for git sync (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4705\"\u003e#4705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c12585baeb9197158cd50975af66856617732aea\"\u003e\u003ccode\u003ec12585b\u003c/code\u003e\u003c/a\u003e chore: remove regression label management (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4699\"\u003e#4699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-sdk-js/compare/v2.1692.0...v2.1693.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `basic-ftp` from 5.0.5 to 5.2.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/releases\"\u003ebasic-ftp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eChanged: Skip files with invalid name in downloadToDir.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded: Add the option to prevent the use of separate transfer host IPs when using PASV. (\u003ca href=\"https://redirect.github.com/patrickjuchli/basic-ftp/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/blob/master/CHANGELOG.md\"\u003ebasic-ftp's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eChanged: Skip files with invalid name in downloadToDir. Fixes security vulnerability CVE-2026-27699, see \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-5rq4-664w-9x2c\"\u003ehttps://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-5rq4-664w-9x2c\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded: Add the option to prevent the use of separate transfer host IPs when using PASV. (\u003ca href=\"https://redirect.github.com/patrickjuchli/basic-ftp/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/5d41e45073ed1a8a3b5e5a1bbfcd131e61295bf8\"\u003e\u003ccode\u003e5d41e45\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/49c2e73ed1cae4962ae38b33ab93a3548c2f5622\"\u003e\u003ccode\u003e49c2e73\u003c/code\u003e\u003c/a\u003e Update dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/2a2a0e6514357b9eda07c2f8afbd3f04727a7cd9\"\u003e\u003ccode\u003e2a2a0e6\u003c/code\u003e\u003c/a\u003e Skip invalid filenames\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/65c90d949c0f8a9709759dff9e76bbe07061812b\"\u003e\u003ccode\u003e65c90d9\u003c/code\u003e\u003c/a\u003e Fix permissions for workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/593cb7831bec60d5590acc3eeb2e553f4a431167\"\u003e\u003ccode\u003e593cb78\u003c/code\u003e\u003c/a\u003e Set permissions for workflow jobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/36adf110beabc9acdcad122149a2ea795a2b1a6c\"\u003e\u003ccode\u003e36adf11\u003c/code\u003e\u003c/a\u003e Remove deprecated CodeQL check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/9da4af0e1f82fe372bedc1b7820f55c6eaf012e5\"\u003e\u003ccode\u003e9da4af0\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/699303975bea182b966f9f34a1ecbbebe92afcef\"\u003e\u003ccode\u003e6993039\u003c/code\u003e\u003c/a\u003e Improve naming\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/0b8f7560e11af817d70ff17f986b334ba2e99b81\"\u003e\u003ccode\u003e0b8f756\u003c/code\u003e\u003c/a\u003e Improve naming\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/67a53f21623e4047d28d7a6f98f539f1adc9d1d0\"\u003e\u003ccode\u003e67a53f2\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/compare/v5.0.5...v5.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~patrickjuchli\"\u003epatrickjuchli\u003c/a\u003e, a new releaser for basic-ftp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `mongoose` from 8.8.4 to 8.9.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Automattic/mongoose/releases\"\u003emongoose's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e8.9.5 / 2025-01-13\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: disallow nested $where in populate match\u003c/li\u003e\n\u003cli\u003efix(schema): handle bitwise operators on Int32 \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15176\"\u003e#15176\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15170\"\u003e#15170\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.4 / 2025-01-09\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(document): fix document not applying manual populate when using a function in schema.options.ref \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15138\"\u003e#15138\u003c/a\u003e \u003ca href=\"https://github.com/IchirokuXVI\"\u003eIchirokuXVI\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): make Model.validate() static correctly cast document arrays \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15169\"\u003e#15169\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15164\"\u003e#15164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): allow passing validateBeforeSave option to bulkSave() to skip validation \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15161\"\u003e#15161\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15156\"\u003e#15156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(schema): allow multiple self-referencing discriminator schemas using Schema.prototype.discriminator \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15142\"\u003e#15142\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15120\"\u003e#15120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: avoid BufferToBinary\u0026lt;\u0026gt; wiping lean types when passed to generic functions \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15160\"\u003e#15160\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15158\"\u003e#15158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix \u0026lt;code\u0026gt; in header ids \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15159\"\u003e#15159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix header in field-level-encryption.md \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15137\"\u003e#15137\u003c/a\u003e \u003ca href=\"https://github.com/damieng\"\u003edamieng\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.3 / 2024-12-30\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(schema): make duplicate index error a warning for now to prevent blocking upgrading \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15135\"\u003e#15135\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15112\"\u003e#15112\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15109\"\u003e#15109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): handle document array paths set to non-array values in Model.castObject() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15124\"\u003e#15124\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15075\"\u003e#15075\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(document): avoid using childSchemas.path for compatibility with pre-Mongoose-8.8 schemas \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15131\"\u003e#15131\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15071\"\u003e#15071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): avoid throwing unnecessary error if updateOne() returns null in save() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15126\"\u003e#15126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf(cursor): clear the stack every time if using populate with batchSize to avoid stack overflows with large docs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15136\"\u003e#15136\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/10449\"\u003e#10449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: make BufferToBinary avoid Document instances \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15123\"\u003e#15123\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15122\"\u003e#15122\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(model+query): avoid stripping out virtuals when calling populate with paths generic \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15132\"\u003e#15132\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15111\"\u003e#15111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(schema): add missing removeIndex \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15134\"\u003e#15134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add cleanIndexes() to IndexManager interface \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15127\"\u003e#15127\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: move search endpoint to netlify \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15119\"\u003e#15119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.2 / 2024-12-19\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(schema): avoid throwing duplicate index error if index spec keys have different order or index has a custom name \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15112\"\u003e#15112\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15109\"\u003e#15109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(map): clean modified subpaths when overwriting values in map of subdocs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15114\"\u003e#15114\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15108\"\u003e#15108\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(aggregate): pull session from transaction local storage for aggregation cursors \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15094\"\u003e#15094\u003c/a\u003e \u003ca href=\"https://github.com/IchirokuXVI\"\u003eIchirokuXVI\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: correctly handle union types in BufferToBinary and related helpers \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15103\"\u003e#15103\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15102\"\u003e#15102\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15057\"\u003e#15057\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add UUID to RefType \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15115\"\u003e#15115\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15101\"\u003e#15101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: remove link to Mongoose 5.x docs from dropdown \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15116\"\u003e#15116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(connection+document+model): remove remaining references to remove(), clarify that deleteOne() does not execute until then() or exec() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15113\"\u003e#15113\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15107\"\u003e#15107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.1 / 2024-12-16\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(connection): remove heartbeat check in load balanced mode \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15089\"\u003e#15089\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15042\"\u003e#15042\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/14812\"\u003e#14812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(discriminator): gather childSchemas when creating discriminator to ensure $getAllSubdocs() can properly get all subdocs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15099\"\u003e#15099\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15088\"\u003e#15088\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15092\"\u003e#15092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): handle discriminators in castObject() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15096\"\u003e#15096\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15075\"\u003e#15075\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(schema): throw error if duplicate index definition using unique in schema path and subsequent .index() call \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15093\"\u003e#15093\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15056\"\u003e#15056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: mark documents that are populated using hydratedPopulatedDocs option as populated in top-level doc \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15080\"\u003e#15080\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15048\"\u003e#15048\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(document+schema): improve error message for get() on invalid path \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15098\"\u003e#15098\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15071\"\u003e#15071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: remove more callback doc references \u0026amp; some small other changes \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15095\"\u003e#15095\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.0 / 2024-12-13\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md\"\u003emongoose's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e8.9.5 / 2025-01-13\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: disallow nested $where in populate match CVE-2025-23061\u003c/li\u003e\n\u003cli\u003efix(schema): handle bitwise operators on Int32 \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15176\"\u003e#15176\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15170\"\u003e#15170\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e7.8.4 / 2025-01-13\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: disallow nested $where in populate match CVE-2025-23061\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e6.13.6 / 2025-01-13\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: disallow nested $where in populate match CVE-2025-23061\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.4 / 2025-01-09\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(document): fix document not applying manual populate when using a function in schema.options.ref \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15138\"\u003e#15138\u003c/a\u003e \u003ca href=\"https://github.com/IchirokuXVI\"\u003eIchirokuXVI\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): make Model.validate() static correctly cast document arrays \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15169\"\u003e#15169\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15164\"\u003e#15164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): allow passing validateBeforeSave option to bulkSave() to skip validation \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15161\"\u003e#15161\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15156\"\u003e#15156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(schema): allow multiple self-referencing discriminator schemas using Schema.prototype.discriminator \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15142\"\u003e#15142\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15120\"\u003e#15120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: avoid BufferToBinary\u0026lt;\u0026gt; wiping lean types when passed to generic functions \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15160\"\u003e#15160\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15158\"\u003e#15158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix \u003ccode\u003e\u0026lt;code\u0026gt;\u003c/code\u003e in header ids \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15159\"\u003e#15159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix header in field-level-encryption.md \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15137\"\u003e#15137\u003c/a\u003e \u003ca href=\"https://github.com/damieng\"\u003edamieng\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.3 / 2024-12-30\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(schema): make duplicate index error a warning for now to prevent blocking upgrading \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15135\"\u003e#15135\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15112\"\u003e#15112\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15109\"\u003e#15109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): handle document array paths set to non-array values in Model.castObject() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15124\"\u003e#15124\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15075\"\u003e#15075\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(document): avoid using childSchemas.path for compatibility with pre-Mongoose-8.8 schemas \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15131\"\u003e#15131\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15071\"\u003e#15071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): avoid throwing unnecessary error if updateOne() returns null in save() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15126\"\u003e#15126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf(cursor): clear the stack every time if using populate with batchSize to avoid stack overflows with large docs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15136\"\u003e#15136\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/10449\"\u003e#10449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: make BufferToBinary avoid Document instances \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15123\"\u003e#15123\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15122\"\u003e#15122\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(model+query): avoid stripping out virtuals when calling populate with paths generic \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15132\"\u003e#15132\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15111\"\u003e#15111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(schema): add missing removeIndex \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15134\"\u003e#15134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add cleanIndexes() to IndexManager interface \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15127\"\u003e#15127\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: move search endpoint to netlify \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15119\"\u003e#15119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.2 / 2024-12-19\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(schema): avoid throwing duplicate index error if index spec keys have different order or index has a custom name \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15112\"\u003e#15112\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15109\"\u003e#15109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(map): clean modified subpaths when overwriting values in map of subdocs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15114\"\u003e#15114\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15108\"\u003e#15108\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(aggregate): pull session from transaction local storage for aggregation cursors \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15094\"\u003e#15094\u003c/a\u003e \u003ca href=\"https://github.com/IchirokuXVI\"\u003eIchirokuXVI\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: correctly handle union types in BufferToBinary and related helpers \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15103\"\u003e#15103\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15102\"\u003e#15102\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15057\"\u003e#15057\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add UUID to RefType \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15115\"\u003e#15115\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15101\"\u003e#15101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: remove link to Mongoose 5.x docs from dropdown \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15116\"\u003e#15116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(connection+document+model): remove remaining references to remove(), clarify that deleteOne() does not execute until then() or exec() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15113\"\u003e#15113\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15107\"\u003e#15107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.1 / 2024-12-16\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(connection): remove heartbeat check in load balanced mode \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15089\"\u003e#15089\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15042\"\u003e#15042\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/14812\"\u003e#14812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(discriminator): gather childSchemas when creating discriminator to ensure $getAllSubdocs() can properly get all subdocs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15099\"\u003e#15099\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15088\"\u003e#15088\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15092\"\u003e#15092\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/5af0a109fcf206eb765c02e0fffe54a78ab95174\"\u003e\u003ccode\u003e5af0a10\u003c/code\u003e\u003c/a\u003e chore: release 8.9.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/a42d8f5e3b8a6c2abd7d32c15b0cc5edac928d4e\"\u003e\u003ccode\u003ea42d8f5\u003c/code\u003e\u003c/a\u003e Merge branch '7.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/73e81abe3ec012f8255d3ca9978594075378faf4\"\u003e\u003ccode\u003e73e81ab\u003c/code\u003e\u003c/a\u003e chore: release 7.8.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/4fe9a904e3c2184ce6d01d9c3c8f3b239616f155\"\u003e\u003ccode\u003e4fe9a90\u003c/code\u003e\u003c/a\u003e Merge branch '6.x' into 7.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/e59e342e5d01bfeee31c5d5c796745315ecf0fa9\"\u003e\u003ccode\u003ee59e342\u003c/code\u003e\u003c/a\u003e chore: release 6.13.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/64a9f9706f2428c49e0cfb8e223065acc645f7bc\"\u003e\u003ccode\u003e64a9f97\u003c/code\u003e\u003c/a\u003e fix: disallow nested $where in populate match\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/fa33717db8c6ee2331c68241abff7a81b84a70fb\"\u003e\u003ccode\u003efa33717\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15176\"\u003e#15176\u003c/a\u003e from Automattic/vkarpov15/\u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15170\"\u003egh-15170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/072860237a2b8d968e06d4090a24127de8cdff24\"\u003e\u003ccode\u003e0728602\u003c/code\u003e\u003c/a\u003e test: make test cast non-boolean value\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/0cad0d71a8667295c6abd4636ea7d7b5cdc164e8\"\u003e\u003ccode\u003e0cad0d7\u003c/code\u003e\u003c/a\u003e fix(schema): handle bitwise operators on Int32\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/39886fbb57aaf345d01c0294cf2c3d2781898c29\"\u003e\u003ccode\u003e39886fb\u003c/code\u003e\u003c/a\u003e docs: quick changelog formatting fix\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Automattic/mongoose/compare/8.8.4...8.9.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `multer` from 1.4.5-lts.1 to 2.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/multer/releases\"\u003emulter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.1\u003c/h2\u003e\n\u003ch2\u003eImportant\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-3520\"\u003eCVE-2026-3520\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-5528-5vmv-3xc2\"\u003eGHSA-5528-5vmv-3xc2\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: add node version to 25.x in CI by \u003ca href=\"https://github.com/imangas\"\u003e\u003ccode\u003e@​imangas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1372\"\u003eexpressjs/multer#1372\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1378\"\u003eexpressjs/multer#1378\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1377\"\u003eexpressjs/multer#1377\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github/codeql-action from 3.24.7 to 4.32.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1376\"\u003eexpressjs/multer#1376\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/upload-artifact from 4.5.0 to 7.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1375\"\u003eexpressjs/multer#1375\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 4.1.1 to 6.0.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1374\"\u003eexpressjs/multer#1374\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix error/abort handling by \u003ca href=\"https://github.com/ctcpip\"\u003e\u003ccode\u003e@​ctcpip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1373\"\u003eexpressjs/multer#1373\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e2.1.1 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1380\"\u003eexpressjs/multer#1380\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/imangas\"\u003e\u003ccode\u003e@​imangas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1372\"\u003eexpressjs/multer#1372\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1378\"\u003eexpressjs/multer#1378\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/multer/compare/v2.1.0...v2.1.1\"\u003ehttps://github.com/expressjs/multer/compare/v2.1.0...v2.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.1.0\u003c/h2\u003e\n\u003ch2\u003eImportant\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-2359\"\u003eCVE-2026-2359\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-v52c-386h-88mc\"\u003eGHSA-v52c-386h-88mc\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-3304\"\u003eCVE-2026-3304\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-xf7r-hgr6-v32p\"\u003eGHSA-xf7r-hgr6-v32p\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: add funding to package.json by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1346\"\u003eexpressjs/multer#1346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: drop mkdirp dependency by \u003ca href=\"https://github.com/wojtekmaj\"\u003e\u003ccode\u003e@​wojtekmaj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1350\"\u003eexpressjs/multer#1350\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: drop object-assign dependency by \u003ca href=\"https://github.com/wojtekmaj\"\u003e\u003ccode\u003e@​wojtekmaj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1351\"\u003eexpressjs/multer#1351\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: drop xtend dependency by \u003ca href=\"https://github.com/wojtekmaj\"\u003e\u003ccode\u003e@​wojtekmaj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1352\"\u003eexpressjs/multer#1352\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(gitignore): ignore .nyc_output directory by \u003ca href=\"https://github.com/ShubhamOulkar\"\u003e\u003ccode\u003e@​ShubhamOulkar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1332\"\u003eexpressjs/multer#1332\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typo in README-vi.md regarding file upload by \u003ca href=\"https://github.com/Kunniii\"\u003e\u003ccode\u003e@​Kunniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1366\"\u003eexpressjs/multer#1366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typo in README-pt-br.md for array method by \u003ca href=\"https://github.com/matheushbm192\"\u003e\u003ccode\u003e@​matheushbm192\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1367\"\u003eexpressjs/multer#1367\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eheaders-support-utf8 by \u003ca href=\"https://github.com/Doc999tor\"\u003e\u003ccode\u003e@​Doc999tor\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1210\"\u003eexpressjs/multer#1210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Turkish translation (README-tr.md) by \u003ca href=\"https://github.com/Sabandogan\"\u003e\u003ccode\u003e@​Sabandogan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1360\"\u003eexpressjs/multer#1360\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 2.1.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1371\"\u003eexpressjs/multer#1371\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wojtekmaj\"\u003e\u003ccode\u003e@​wojtekmaj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1350\"\u003eexpressjs/multer#1350\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ShubhamOulkar\"\u003e\u003ccode\u003e@​ShubhamOulkar\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1332\"\u003eexpressjs/multer#1332\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Kunniii\"\u003e\u003ccode\u003e@​Kunniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1366\"\u003eexpressjs/multer#1366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matheushbm192\"\u003e\u003ccode\u003e@​matheushbm192\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1367\"\u003eexpressjs/multer#1367\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Doc999tor\"\u003e\u003ccode\u003e@​Doc999tor\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1210\"\u003eexpressjs/multer#1210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Sabandogan\"\u003e\u003ccode\u003e@​Sabandogan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1360\"\u003eexpressjs/multer#1360\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/multer/compare/v2.0.2...v2.1.0\"\u003ehttps://github.com/expressjs/multer/compare/v2.0.2...v2.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/multer/blob/main/CHANGELOG.md\"\u003emulter's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-3520\"\u003eCVE-2026-3520\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-5528-5vmv-3xc2\"\u003eGHSA-5528-5vmv-3xc2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix error/abort handling\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003edefParamCharset\u003c/code\u003e option for UTF-8 filename support (\u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1210\"\u003e#1210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-2359\"\u003eCVE-2026-2359\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-v52c-386h-88mc\"\u003eGHSA-v52c-386h-88mc\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-3304\"\u003eCVE-2026-3304\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-xf7r-hgr6-v32p\"\u003eGHSA-xf7r-hgr6-v32p\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-7338\"\u003eCVE-2025-7338\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-fjgf-rc76-4x9p\"\u003eGHSA-fjgf-rc76-4x9p\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-48997\"\u003eCVE-2025-48997\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-g5hg-p3ph-g8qg\"\u003eGHSA-g5hg-p3ph-g8qg\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBreaking change: The minimum supported Node version is now 10.16.0\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-47935\"\u003eCVE-2025-47935\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-44fp-w29j-9vj5\"\u003eGHSA-44fp-w29j-9vj5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-47944\"\u003eCVE-2025-47944\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-4pg4-qvpc-4q3h\"\u003eGHSA-4pg4-qvpc-4q3h\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.5-lts.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix out-of-band error event from busboy (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1177\"\u003e#1177\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/368c8a10cca11854cf17c24029fefd1eafb1c059\"\u003e\u003ccode\u003e368c8a1\u003c/code\u003e\u003c/a\u003e 2.1.1 (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1380\"\u003e#1380\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/7e66481f8b2e6c54b982b34c152479e096ce2752\"\u003e\u003ccode\u003e7e66481\u003c/code\u003e\u003c/a\u003e 🐛 fix recursion issue\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/643571ef85e9db94b87a777773f4d67156f82a3e\"\u003e\u003ccode\u003e643571e\u003c/code\u003e\u003c/a\u003e ✅ add explicit test for client able to send body without abrupt disconnect\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/e86fa523753f8d54ad0687bf52fb20044b6fa309\"\u003e\u003ccode\u003ee86fa52\u003c/code\u003e\u003c/a\u003e fix error/abort handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/ca37779bf1f531a70af9977805380d0f51d293e2\"\u003e\u003ccode\u003eca37779\u003c/code\u003e\u003c/a\u003e chore(deps): bump actions/checkout from 4.1.1 to 6.0.2 (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1374\"\u003e#1374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/13088f41e3bf8c3fc21d8c2867ffafb42470ed09\"\u003e\u003ccode\u003e13088f4\u003c/code\u003e\u003c/a\u003e chore(deps): bump actions/upload-artifact from 4.5.0 to 7.0.0 (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1375\"\u003e#1375\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/bc6a1d1374f7ddc9baf9d22bf7c30f831c621e3a\"\u003e\u003ccode\u003ebc6a1d1\u003c/code\u003e\u003c/a\u003e chore(deps): bump github/codeql-action from 3.24.7 to 4.32.4 (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1376\"\u003e#1376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/c496e931263a901ccfc0821ac21768ac23786f77\"\u003e\u003ccode\u003ec496e93\u003c/code\u003e\u003c/a\u003e chore(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1377\"\u003e#1377\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/fa173d30d01f4e18a8be74570b2770c7230b8b05\"\u003e\u003ccode\u003efa173d3\u003c/code\u003e\u003c/a\u003e chore(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.3 (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1378\"\u003e#1378\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/17d7f5193a237ebfd4c19274c7a6729538b4a9a0\"\u003e\u003ccode\u003e17d7f51\u003c/code\u003e\u003c/a\u003e chore: add node version to 25.x in CI\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/expressjs/multer/compare/v1.4.5-lts.1...v2.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ulisesgascon\"\u003eulisesgascon\u003c/a\u003e, a new releaser for multer since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `mysql2` from 2.3.3 to 3.9.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sidorares/node-mysql2/releases\"\u003emysql2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.9.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.7...v3.9.8\"\u003e3.9.8\u003c/a\u003e (2024-05-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e sanitize fields and tables when using nestTables (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2702\"\u003e#2702\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/efe3db527a2c94a63c2d14045baba8dfefe922bc\"\u003eefe3db5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport deno + caching_sha2_password FULL_AUTHENTICATION_PACKET flow (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2704\"\u003e#2704\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/2e0369445ba1581b427f78689a935ac3debfbf07\"\u003e2e03694\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypings:\u003c/strong\u003e typo from \u003ccode\u003ejonServerPublicKey\u003c/code\u003e to \u003ccode\u003eonServerPublicKey\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2699\"\u003e#2699\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/8b5f6911b69b766a3732fa160049d263460da74b\"\u003e8b5f691\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.9.7\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.6...v3.9.7\"\u003e3.9.7\u003c/a\u003e (2024-04-21)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e sanitize timezone parameter value to prevent code injection - report by zhaoyudi (Nebulalab) (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2608\"\u003e#2608\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/7d4b098c7e29d5a6cb9eac2633bfcc2f0f1db713\"\u003e7d4b098\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.9.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.5...v3.9.6\"\u003e3.9.6\u003c/a\u003e (2024-04-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebinary parser sometimes reads out of packet bounds when results contain null and typecast is false (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2601\"\u003e#2601\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/705835d06ff437cf0bf3169dac0a5f68002c4f87\"\u003e705835d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.9.5\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.4...v3.9.5\"\u003e3.9.5\u003c/a\u003e (2024-04-17)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erevert breaking change in results creation (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2591\"\u003e#2591\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/f7c60d01a49666130f51d3847ccfdd3d6e3d33e9\"\u003ef7c60d0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.9.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.3...v3.9.4\"\u003e3.9.4\u003c/a\u003e (2024-04-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSSL:\u003c/strong\u003e separate each certificate into an individual item \u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2542\"\u003e#2542\u003c/a\u003e (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/63f1055c631e665179cad686afd3e4f1d5c162b2\"\u003e63f1055\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e improve supportBigNumbers and bigNumberStrings sanitization (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2572\"\u003e#2572\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/74abf9ef94d76114d9a09415e28b496522a94805\"\u003e74abf9e\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixes a potential RCE attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e improve results object creation (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2574\"\u003e#2574\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/4a964a3910a4b8de008696c554ab1b492e9b4691\"\u003e4a964a3\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixes a potential Prototype Pollution attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e improve the contribution guidelines (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2552\"\u003e#2552\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/8a818ce0f30654eba854759e6409c0ac856fc448\"\u003e8a818ce\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.9.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.2...v3.9.3\"\u003e3.9.3\u003c/a\u003e (2024-03-26)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sidorares/node-mysql2/blob/master/Changelog.md\"\u003emysql2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.7...v3.9.8\"\u003e3.9.8\u003c/a\u003e (2024-05-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e sanitize fields and tables when using nestTables (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2702\"\u003e#2702\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/efe3db527a2c94a63c2d14045baba8dfefe922bc\"\u003eefe3db5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport deno + caching_sha2_password FULL_AUTHENTICATION_PACKET flow (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2704\"\u003e#2704\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/2e0369445ba1581b427f78689a935ac3debfbf07\"\u003e2e03694\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypings:\u003c/strong\u003e typo from \u003ccode\u003ejonServerPublicKey\u003c/code\u003e to \u003ccode\u003eonServerPublicKey\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2699\"\u003e#2699\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/8b5f6911b69b766a3732fa160049d263460da74b\"\u003e8b5f691\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.6...v3.9.7\"\u003e3.9.7\u003c/a\u003e (2024-04-21)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e sanitize timezone parameter value to prevent code injection (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2608\"\u003e#2608\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/7d4b098c7e29d5a6cb9eac2633bfcc2f0f1db713\"\u003e7d4b098\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.5...v3.9.6\"\u003e3.9.6\u003c/a\u003e (2024-04-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebinary parser sometimes reads out of packet bounds when results contain null and typecast is false (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2601\"\u003e#2601\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/705835d06ff437cf0bf3169dac0a5f68002c4f87\"\u003e705835d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.4...v3.9.5\"\u003e3.9.5\u003c/a\u003e (2024-04-17)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erevert breaking change in results creation (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2591\"\u003e#2591\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/f7c60d01a49666130f51d3847ccfdd3d6e3d33e9\"\u003ef7c60d0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.3...v3.9.4\"\u003e3.9.4\u003c/a\u003e (2024-04-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e improve the contribution guidelines (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2552\"\u003e#2552\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/8a818ce0f30654eba854759e6409c0ac856fc448\"\u003e8a818ce\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e improve results object creation (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2574\"\u003e#2574\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/4a964a3910a4b8de008696c554ab1b492e9b4691\"\u003e4a964a3\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e improve supportBigNumbers and bigNumberStrings sanitization (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2572\"\u003e#2572\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/74abf9ef94d76114d9a09415e28b496522a94805\"\u003e74abf9e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.2...v3.9.3\"\u003e3.9.3\u003c/a\u003e (2024-03-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e improve cache key formation (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2424\"\u003e#2424\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/0d54b0ca6498c823098426038162ef10df02c818\"\u003e0d54b0c\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixes a potential parser cache poisoning attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate Amazon RDS SSL CA cert (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/pull/2131\"\u003e#2131\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/d9dccfd837d701f377574b85a05586be89015460\"\u003ed9dccfd\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.1...v3.9.2\"\u003e3.9.2\u003c/a\u003e (2024-02-26)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/f637d3fb8e3813e1110c475b1eedf75d24992581\"\u003e\u003ccode\u003ef637d3f\u003c/code\u003e\u003c/a\u003e chore(master): release 3.9.8 (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2700\"\u003e#2700\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/efe3db527a2c94a63c2d14045baba8dfefe922bc\"\u003e\u003ccode\u003eefe3db5\u003c/code\u003e\u003c/a\u003e fix(security): sanitize fields and tables when using nestTables (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2702\"\u003e#2702\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/2e0369445ba1581b427f78689a935ac3debfbf07\"\u003e\u003ccode\u003e2e03694\u003c/code\u003e\u003c/a\u003e fix: support deno + caching_sha2_password FULL_AUTHENTICATION_PACKET flow (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2\"\u003e#2\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/8b5f6911b69b766a3732fa160049d263460da74b\"\u003e\u003ccode\u003e8b5f691\u003c/code\u003e\u003c/a\u003e fix(typings): typo from \u003ccode\u003ejonServerPublicKey\u003c/code\u003e to \u003ccode\u003eonServerPublicKey\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2699\"\u003e#2699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/5c75802493cb37997d0eddf4fd9d1e9320377007\"\u003e\u003ccode\u003e5c75802\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump tsx from 4.10.5 to 4.11.0 in /website (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2695\"\u003e#2695\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/179769f5c16bef13d189507afe8a30963d331bfd\"\u003e\u003ccode\u003e179769f\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​easyops-cn/docusaurus-search-local\u003c/code\u003e in /website (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2696\"\u003e#2696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/56289e275d52bbb804c1e779bfc7fb84927ae6e3\"\u003e\u003ccode\u003e56289e2\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump poku from 1.12.1 to 1.13.0 (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2698\"\u003e#2698\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/b0293083fb287f62bd9f54f0a40485bddd91d986\"\u003e\u003ccode\u003eb029308\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump poku from 1.12.1 to 1.13.0 in /website (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2697\"\u003e#2697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/539acb802aa388d71a4397013a47c4b7f3a4350f\"\u003e\u003ccode\u003e539acb8\u003c/code\u003e\u003c/a\u003e build(deps): bump lucide-react from 0.378.0 to 0.379.0 in /website (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2693\"\u003e#2693\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/dc80580c70016ae16d7027475d7ac29cebf714d0\"\u003e\u003ccode\u003edc80580\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e from 7.9.0 to 7.10.0 i...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v2.3.3...v3.9.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `underscore` from 1.13.7 to 1.13.8\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/9374840c22e348083d0d072f30dc980622523259\"\u003e\u003ccode\u003e9374840\u003c/code\u003e\u003c/a\u003e Merge branch 'release/1.13.8'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/309ad7e6658b927ca5f28ce069665d9c523c53e5\"\u003e\u003ccode\u003e309ad7e\u003c/code\u003e\u003c/a\u003e Re-generate annotated sources and minified codemaps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/a1ac1d33537662304d4985f61301112ea0f1f051\"\u003e\u003ccode\u003ea1ac1d3\u003c/code\u003e\u003c/a\u003e Add links to diff and docs in 1.13.8 change log entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/b579595ec9da8db15196bc1d3547833458939c44\"\u003e\u003ccode\u003eb579595\u003c/code\u003e\u003c/a\u003e Mention CVE-2026-27601 in comments and documentation (\u003ca href=\"https://redirect.github.com/jashkenas/underscore/issues/3011\"\u003e#3011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/45ea015a99069780db492a114c1e709dd77d3b89\"\u003e\u003ccode\u003e45ea015\u003c/code\u003e\u003c/a\u003e Revert obfuscations from 42823bb.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/4a4019e00beb2c42eda20c05f375a35983b748f0\"\u003e\u003ccode\u003e4a4019e\u003c/code\u003e\u003c/a\u003e Update minified bundles\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/1ccfdd0c50470d862bb553c1e0c70567a59d4355\"\u003e\u003ccode\u003e1ccfdd0\u003c/code\u003e\u003c/a\u003e Add preliminary release notes for 1.13.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/42823bbff87e9fe82855d5adb5ba7ff839f8b446\"\u003e\u003ccode\u003e42823bb\u003c/code\u003e\u003c/a\u003e Temporarily obfuscate comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/a6e23ae9647461ec33ad9f92a2ecfc220eea0a84\"\u003e\u003ccode\u003ea6e23ae\u003c/code\u003e\u003c/a\u003e Make _.isEqual nonrecursive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/f2b516441ab99b82045f2a336c348899e6527e00\"\u003e\u003ccode\u003ef2b5164\u003c/code\u003e\u003c/a\u003e Add regression test against stack overflow in _.isEqual\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jashkenas/underscore/compare/1.13.7...1.13.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 2.0.1 to 2.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 10.4.5 to 10.5.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/56774ef73b495eb0b17cdd0f42921f5ef62297c1\"\u003e\u003ccode\u003e56774ef\u003c/code\u003e\u003c/a\u003e 10.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/1e4e297342a09f2aa0ced87fcd4a70ddc325d75f\"\u003e\u003ccode\u003e1e4e297\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v10.4.5...v10.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 11.1.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/56774ef73b495eb0b17cdd0f42921f5ef62297c1\"\u003e\u003ccode\u003e56774ef\u003c/code\u003e\u003c/a\u003e 10.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/1e4e297342a09f2aa0ced87fcd4a70ddc325d75f\"\u003e\u003ccode\u003e1e4e297\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v10.4.5...v10.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 5.1.6 to 5.1.9\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 9.0.5 to 9.0.9\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-xml-parser` from 4.5.0 to 5.5.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/releases\"\u003efast-xml-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003efix entity expansion and incorrect replacement and performance\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.5...v5.5.6\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.5...v5.5.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003esupport onDangerousProperty\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.3...v5.5.5\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.3...v5.5.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eupdate dependecies to fix typings\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.1...v5.5.2\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.1...v5.5.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eintegrate path-expression-matcher\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport path-expression-matcher\u003c/li\u003e\n\u003cli\u003efix: stopNode should not be parsed\u003c/li\u003e\n\u003cli\u003eperformance improvement for stopNode checking\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eSeparate Builder\u003c/h2\u003e\n\u003cp\u003eXML Builder was the part of \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder\"\u003efast-xml-parser\u003c/a\u003e for years. But considering that any bug in builder may false-alarm the users who are only using parser and vice-versa, we have decided to split it into a separate package.\u003c/p\u003e\n\u003ch2\u003eMigration\u003c/h2\u003e\n\u003cp\u003eTo migrate to fast-xml-builder;\u003c/p\u003e\n\u003cp\u003eFrom\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eimport { XMLBuilder } from \u0026quot;fast-xml-parser\u0026quot;;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eTo\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eimport  XMLBuilder  from \u0026quot;fast-xml-builder\u0026quot;;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eXMLBuilder will be removed from current package in any next major version of this library. So better to migrate.\u003c/p\u003e\n\u003ch2\u003esupport strictReservedNames\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.9...v5.3.9\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.9...v5.3.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ehandle non-array input for XML builder \u0026amp;\u0026amp; support maxNestedTags\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport maxNestedTags\u003c/li\u003e\n\u003cli\u003ehandle non-array input for XML builder when preserveOrder is true (By \u003ca href=\"https://github.com/Angelopvtac\"\u003eAngelo Coetzee\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esave use of js properies\n\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.7...v5.3.8\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.7...v5.3.8\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCJS typing fix\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUnexport \u003ccode\u003eX2jOptions\u003c/code\u003e at declaration site by \u003ca href=\"https://github.com/Drarig29\"\u003e\u003ccode\u003e@​Drarig29\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/pull/787\"\u003eNaturalIntelligence/fast-xml-parser#787\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Drarig29\"\u003e\u003ccode\u003e@​Drarig29\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/pull/787\"\u003eNaturalIntelligence/fast-xml-parser#787\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e...\n\n_Description has been truncated_","html_url":"https://github.com/EmpCloud/emp-monitor/pull/41","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/EmpCloud%2Femp-monitor/issues/41","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/41/packages"},{"uuid":"4053794401","node_id":"PR_kwDOOySMK87JfGHC","number":21,"state":"closed","title":"Bump the npm_and_yarn group across 13 directories with 21 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-11T01:35:15.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-10T19:32:05.000Z","updated_at":"2026-03-11T01:35:17.000Z","time_to_close":21790,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":21,"packages":[{"name":"aws-sdk","old_version":"2.1448.0","new_version":"2.1693.0","repository_url":"https://github.com/aws/aws-sdk-js"},{"name":"axios","old_version":"1.9.0","new_version":"1.13.5","repository_url":"https://github.com/axios/axios"},{"name":"bn.js","old_version":"5.2.1","new_version":"5.2.3","repository_url":"https://github.com/indutny/bn.js"},{"name":"fastify","old_version":"4.29.0","new_version":"5.8.1","repository_url":"https://github.com/fastify/fastify"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"next","old_version":"13.5.11","new_version":"15.5.10","repository_url":"https://github.com/vercel/next.js"},{"name":"simple-git","old_version":"3.25.0","new_version":"3.32.3","repository_url":"https://github.com/steveukx/git-js"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"base-x","old_version":"3.0.9","new_version":"3.0.11","repository_url":"https://github.com/cryptocoinjs/base-x"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"cipher-base","old_version":"1.0.4","new_version":"1.0.7","repository_url":"https://github.com/crypto-browserify/cipher-base"},{"name":"dottie","old_version":"2.0.6","new_version":"2.0.7","repository_url":"https://github.com/mickhansen/dottie.js"},{"name":"form-data","old_version":"4.0.0","new_version":"4.0.5","repository_url":"https://github.com/form-data/form-data"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"qs","old_version":"6.11.2","new_version":"6.13.0","repository_url":"https://github.com/ljharb/qs"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tar","old_version":"6.1.15","new_version":"6.2.1","repository_url":"https://github.com/isaacs/node-tar"},{"name":"undici","old_version":"5.28.4","new_version":"5.29.0","repository_url":"https://github.com/nodejs/undici"},{"name":"validator","old_version":"13.11.0","new_version":"13.15.26","repository_url":"https://github.com/validatorjs/validator.js"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 21 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk](https://github.com/aws/aws-sdk-js) | `2.1448.0` | `2.1693.0` |\n| [axios](https://github.com/axios/axios) | `1.9.0` | `1.13.5` |\n| [bn.js](https://github.com/indutny/bn.js) | `5.2.1` | `5.2.3` |\n| [fastify](https://github.com/fastify/fastify) | `4.29.0` | `5.8.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [next](https://github.com/vercel/next.js) | `13.5.11` | `15.5.10` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.25.0` | `3.32.3` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [base-x](https://github.com/cryptocoinjs/base-x) | `3.0.9` | `3.0.11` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [cipher-base](https://github.com/crypto-browserify/cipher-base) | `1.0.4` | `1.0.7` |\n| [dottie](https://github.com/mickhansen/dottie.js) | `2.0.6` | `2.0.7` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [qs](https://github.com/ljharb/qs) | `6.11.2` | `6.13.0` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.15` | `6.2.1` |\n| [undici](https://github.com/nodejs/undici) | `5.28.4` | `5.29.0` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.11.0` | `13.15.26` |\n\nBumps the npm_and_yarn group with 1 update in the /packages/account-postgres-sink-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/active-device-oracle directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/distributor-oracle directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/docsite directory: [next](https://github.com/vercel/next.js).\nBumps the npm_and_yarn group with 1 update in the /packages/fanout-metadata-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/faucet-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/helium-vote-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/migration-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/monitor-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/rewards-oracle-faucet-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/tokens-to-rent-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/vsr-metadata-service directory: [fastify](https://github.com/fastify/fastify).\n\nUpdates `aws-sdk` from 2.1448.0 to 2.1693.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js/releases\"\u003eaws-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.1693.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1692.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1691.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1690.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1689.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1688.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1687.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1686.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1685.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1684.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1683.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1682.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1681.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1680.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1679.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1678.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1677.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/9d3c66eca8c4416a9d347d0703f27b65775d65ef\"\u003e\u003ccode\u003e9d3c66e\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1693.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c039567cee58b50a44f53f30318fa21f36c42ecc\"\u003e\u003ccode\u003ec039567\u003c/code\u003e\u003c/a\u003e test(client-elastictranscoder): remove feature test (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4711\"\u003e#4711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/f5b1a6f0aebb477204d979091d654649f29ad9ce\"\u003e\u003ccode\u003ef5b1a6f\u003c/code\u003e\u003c/a\u003e docs: end-of-support (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4706\"\u003e#4706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/657d6feb00447c8be1d65158a0ecc0585b70ed60\"\u003e\u003ccode\u003e657d6fe\u003c/code\u003e\u003c/a\u003e chore: use ssh private key for git sync (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4705\"\u003e#4705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c12585baeb9197158cd50975af66856617732aea\"\u003e\u003ccode\u003ec12585b\u003c/code\u003e\u003c/a\u003e chore: remove regression label management (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4699\"\u003e#4699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/966fa6c316dbb11ca9277564ff7120e6b16467f4\"\u003e\u003ccode\u003e966fa6c\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1692.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/5d0e38adbbc1a3fd6e6bf7c48cd7e209e9eb0b5f\"\u003e\u003ccode\u003e5d0e38a\u003c/code\u003e\u003c/a\u003e Delete EC2 launch configuration e2e tests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4685\"\u003e#4685\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/b9ce3461a495dcf4f4a0be133e103d98130847a6\"\u003e\u003ccode\u003eb9ce346\u003c/code\u003e\u003c/a\u003e chore: fix issue config (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4683\"\u003e#4683\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c06668172b233e0b2ded1afc48f0a11f6b79735c\"\u003e\u003ccode\u003ec066681\u003c/code\u003e\u003c/a\u003e Update issue template config and disable docs requests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4682\"\u003e#4682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/163a7cfc86308e0b54245c04fb7b317bcd3893b0\"\u003e\u003ccode\u003e163a7cf\u003c/code\u003e\u003c/a\u003e Modified bug issue template to add checkbox to report potential regression. (...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-js/compare/v2.1448.0...v2.1693.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.9.0 to 1.13.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.5\u003c/h2\u003e\n\u003ch2\u003eRelease 1.13.5\u003c/h2\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fixed a potential \u003cstrong\u003eDenial of Service\u003c/strong\u003e issue involving the \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBug fix:\u003c/strong\u003e Resolved an issue where \u003ccode\u003eAxiosError\u003c/code\u003e could be missing the \u003ccode\u003estatus\u003c/code\u003e field on and after \u003cstrong\u003ev1.13.3\u003c/strong\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch4\u003eSecurity\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix Denial of Service via \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix/5657. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7313\"\u003e#7313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure \u003ccode\u003estatus\u003c/code\u003e is present in \u003ccode\u003eAxiosError\u003c/code\u003e on and after v1.13.3. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFeatures / Improvements\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAdd input validation to \u003ccode\u003eisAbsoluteURL\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRefactor: bump minor package versions. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7356\"\u003e#7356\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDocumentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eClarify object-check comment. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix deprecated \u003ccode\u003eBuffer\u003c/code\u003e constructor usage and README formatting. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCI / Maintenance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eChore: fix issues with YAML. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7355\"\u003e#7355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: update workflow YAMLs. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: fix run condition. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDev deps: bump \u003ccode\u003ekarma-sourcemap-loader\u003c/code\u003e from 0.3.8 to 0.4.0. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChore(release): prepare release 1.13.5. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sachin11063\"\u003e\u003ccode\u003e@​sachin11063\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/asmitha-16\"\u003e\u003ccode\u003e@​asmitha-16\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog:\u003c/strong\u003e \u003ca href=\"https://github.com/axios/axios/compare/v1.13.4...v1.13.5\"\u003ehttps://github.com/axios/axios/compare/v1.13.4...v1.13.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.13.4\u003c/h2\u003e\n\u003ch2\u003eOverview\u003c/h2\u003e\n\u003cp\u003eThe release addresses issues discovered in v1.13.3 and includes significant CI/CD improvements.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v1.13.3...v1.13.4\"\u003ev1.13.3...v1.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's New in v1.13.4\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix: issues with version 1.13.3\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7352\"\u003e#7352\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ee90dfc28abffbb61e24974b2bd3139a4a40ac76\"\u003eee90dfc\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixed issues discovered in v1.13.3 release\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7201) [#7201](https://github.com/axios/axios/issues/7201) )\"\u003ecodenomnom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Nandann018-ux\" title=\"+60/-10 ([#7272](https://github.com/axios/axios/issues/7272) )\"\u003eNandan Acharya\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/KernelDeimos\" title=\"+22/-40 ([#7042](https://github.com/axios/axios/issues/7042) )\"\u003eEric Dubé\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/tiborpilz\" title=\"+40/-4 ([#5551](https://github.com/axios/axios/issues/5551) )\"\u003eTibor Pilz\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/joaoGabriel55\" title=\"+31/-4 ([#6314](https://github.com/axios/axios/issues/6314) )\"\u003eGabriel Quaresma\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/turadg\" title=\"+23/-6 ([#6265](https://github.com/axios/axios/issues/6265) )\"\u003eTuradg Aleahmad\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/29f75425f0c9f73021f5eedc869c176e30e05fe7\"\u003e\u003ccode\u003e29f7542\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.13.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/431c3a361490a2e3d5ac5d9e08d66d4bb5f3cd2a\"\u003e\u003ccode\u003e431c3a3\u003c/code\u003e\u003c/a\u003e ci: fix run condition (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9ff3a78ad72ecd665a4b673686f1517d824284bf\"\u003e\u003ccode\u003e9ff3a78\u003c/code\u003e\u003c/a\u003e ci: update ymls (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/265b71234c20fabbd6d691858c65a7e9c978659f\"\u003e\u003ccode\u003e265b712\u003c/code\u003e\u003c/a\u003e docs: fix deprecated Buffer constructor and formatting issues in README (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/475e75a260668d227aec9f77735a49748c9041ff\"\u003e\u003ccode\u003e475e75a\u003c/code\u003e\u003c/a\u003e feat: add input validation to isAbsoluteURL (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57\"\u003e\u003ccode\u003e28c7215\u003c/code\u003e\u003c/a\u003e fix: Denial of Service via \u003cstrong\u003eproto\u003c/strong\u003e Key in mergeConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/04cf01969ed58f96920da032f340bfe4614aab90\"\u003e\u003ccode\u003e04cf019\u003c/code\u003e\u003c/a\u003e docs: clarify object check comment (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/696fa753c5366afbd21859c294c64c9ff2b359ab\"\u003e\u003ccode\u003e696fa75\u003c/code\u003e\u003c/a\u003e fix: status is missing in AxiosError on and after v1.13.3 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/569f028a5878faaec8d7d138ba686aac407bda4c\"\u003e\u003ccode\u003e569f028\u003c/code\u003e\u003c/a\u003e fix: added a option to choose between legacy and the new request/response int...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/44b7c9f0c4900fd8784f18e871199402f07fc69f\"\u003e\u003ccode\u003e44b7c9f\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump karma-sourcemap-loader (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.9.0...v1.13.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bn.js` from 5.2.1 to 5.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/indutny/bn.js/blob/master/CHANGELOG.md\"\u003ebn.js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.2.3 / 2026-02-19\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.2 / 2025-04-25\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/ea6c072a951493ca99e5cd5f8da3851b90116271\"\u003e\u003ccode\u003eea6c072\u003c/code\u003e\u003c/a\u003e 5.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/33df26b5771e824f303a79ec6407409376baa64b\"\u003e\u003ccode\u003e33df26b\u003c/code\u003e\u003c/a\u003e fix imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/6db7c3818569423b94ebcf2bdff90fcfb9c47f6d\"\u003e\u003ccode\u003e6db7c38\u003c/code\u003e\u003c/a\u003e 5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/c7e1a532566c83fd0297ff7669c227b824928bf4\"\u003e\u003ccode\u003ec7e1a53\u003c/code\u003e\u003c/a\u003e Fix imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/4cc0bfa5195d54876a6b807827e582522c813019\"\u003e\u003ccode\u003e4cc0bfa\u003c/code\u003e\u003c/a\u003e docs: mention the max plain JS number argument value (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/307\"\u003e#307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/5df40f81ea8afb835b909bb7c21e0833cdeb6a30\"\u003e\u003ccode\u003e5df40f8\u003c/code\u003e\u003c/a\u003e Document \u003ccode\u003elength\u003c/code\u003e unit in \u003ccode\u003etoBuffer(...)\u003c/code\u003e input (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/299\"\u003e#299\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/indutny/bn.js/compare/v5.2.1...v5.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fastify` from 4.29.0 to 5.8.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fastify/releases\"\u003efastify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.8.1\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cp\u003eFixes \u0026quot;Missing End Anchor in \u0026quot;subtypeNameReg\u0026quot; Allows Malformed Content-Types to Pass Validation\u0026quot;: \u003ca href=\"https://github.com/fastify/fastify/security/advisories/GHSA-573f-x89g-hqp9\"\u003ehttps://github.com/fastify/fastify/security/advisories/GHSA-573f-x89g-hqp9\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eCVE-2026-3419\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.8.0...v5.8.1\"\u003ehttps://github.com/fastify/fastify/compare/v5.8.0...v5.8.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs(request): add host security warning references by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6476\"\u003efastify/fastify#6476\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix note style by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6487\"\u003efastify/fastify#6487\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: rename deploy website ci by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6492\"\u003efastify/fastify#6492\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: support pino v9 and v10 by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6496\"\u003efastify/fastify#6496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update logger types and fix TODO comment by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6470\"\u003efastify/fastify#6470\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(test-types): migrate dummy-plugin to FastifyPluginAsync by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6472\"\u003efastify/fastify#6472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix markdown typo in README.md by \u003ca href=\"https://github.com/droppingbeans\"\u003e\u003ccode\u003e@​droppingbeans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6491\"\u003efastify/fastify#6491\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: cover non-numeric content-length client error path by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6500\"\u003efastify/fastify#6500\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove tests-checker workflow by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6481\"\u003efastify/fastify#6481\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove stale.yml file by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6504\"\u003efastify/fastify#6504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(security): remove hackerone references; change note style by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6501\"\u003efastify/fastify#6501\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: rename \u003ccode\u003e@​sinclair/typebox\u003c/code\u003e to typebox by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6494\"\u003efastify/fastify#6494\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(links-check): add external link checker using linkinator-action by \u003ca href=\"https://github.com/umxr\"\u003e\u003ccode\u003e@​umxr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6386\"\u003efastify/fastify#6386\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: upgrade borp to v1.0.0 by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6510\"\u003efastify/fastify#6510\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add OpenJS CNA reference to SECURITY.md by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6516\"\u003efastify/fastify#6516\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: avoid mutating shared routerOptions across instances by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6515\"\u003efastify/fastify#6515\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(types): accept async route hooks in shorthand options by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6514\"\u003efastify/fastify#6514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Improve shutdown lifecycle documentation by \u003ca href=\"https://github.com/kibertoad\"\u003e\u003ccode\u003e@​kibertoad\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6517\"\u003efastify/fastify#6517\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove unused \u003ccode\u003etsconfig.eslint.json\u003c/code\u003e by \u003ca href=\"https://github.com/mrazauskas\"\u003e\u003ccode\u003e@​mrazauskas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6524\"\u003efastify/fastify#6524\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: First-class support for handler-level timeouts by \u003ca href=\"https://github.com/kibertoad\"\u003e\u003ccode\u003e@​kibertoad\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6521\"\u003efastify/fastify#6521\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(security): clarify insecureHTTPParser threat model scope by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6533\"\u003efastify/fastify#6533\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(license): standardise license notice by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6511\"\u003efastify/fastify#6511\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: clarify anyOf nullable coercion behavior with primitive types by \u003ca href=\"https://github.com/slegarraga\"\u003e\u003ccode\u003e@​slegarraga\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6531\"\u003efastify/fastify#6531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove format placeholder from FST_ERR_CTP_INVALID_MEDIA_TYPE message by \u003ca href=\"https://github.com/super-mcgin\"\u003e\u003ccode\u003e@​super-mcgin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6528\"\u003efastify/fastify#6528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(reference/hooks): fix note style by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6538\"\u003efastify/fastify#6538\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Bump lycheeverse/lychee-action from 2.7.0 to 2.8.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6539\"\u003efastify/fastify#6539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Bump actions/dependency-review-action from 4.8.2 to 4.8.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6540\"\u003efastify/fastify#6540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Bump markdownlint-cli2 from 0.20.0 to 0.21.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6542\"\u003efastify/fastify#6542\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove broken links and add ecosystem link validator by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6421\"\u003efastify/fastify#6421\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(validate-ecoystem-links): add job level permission by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6545\"\u003efastify/fastify#6545\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estyle: remove trailing whitespace by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6543\"\u003efastify/fastify#6543\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/droppingbeans\"\u003e\u003ccode\u003e@​droppingbeans\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6491\"\u003efastify/fastify#6491\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/umxr\"\u003e\u003ccode\u003e@​umxr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6386\"\u003efastify/fastify#6386\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slegarraga\"\u003e\u003ccode\u003e@​slegarraga\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6531\"\u003efastify/fastify#6531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/super-mcgin\"\u003e\u003ccode\u003e@​super-mcgin\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6528\"\u003efastify/fastify#6528\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.4...v5.8.0\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.4...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/073ff8132f350aaa53935231019499e983cb9794\"\u003e\u003ccode\u003e073ff81\u003c/code\u003e\u003c/a\u003e Bumped v5.8.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/67f6c9b32cb3623d3c9470cc17ed830dd2f083d7\"\u003e\u003ccode\u003e67f6c9b\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/161578a366edd40ef6d7eb06bfd57bc2b55f37b6\"\u003e\u003ccode\u003e161578a\u003c/code\u003e\u003c/a\u003e chore: sync version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/9b06a781f90d5a8d5ac5fc43eb2fddc392864681\"\u003e\u003ccode\u003e9b06a78\u003c/code\u003e\u003c/a\u003e Bumped v5.8.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/bbdfe82ae891199ba0d2b49326b7ddce5f103ab3\"\u003e\u003ccode\u003ebbdfe82\u003c/code\u003e\u003c/a\u003e style: remove trailing whitespace (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6543\"\u003e#6543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/cd58ed45d3c3b25cae3cfaa27e9c76a1c8865d0f\"\u003e\u003ccode\u003ecd58ed4\u003c/code\u003e\u003c/a\u003e ci(validate-ecoystem-links): add job level permission (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6545\"\u003e#6545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/2590592da900172e04526f36dfe4dac617022469\"\u003e\u003ccode\u003e2590592\u003c/code\u003e\u003c/a\u003e ci: remove broken links and add ecosystem link validator (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6421\"\u003e#6421\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/09b55b6ca6a3244df9f02b02157db41777198d4f\"\u003e\u003ccode\u003e09b55b6\u003c/code\u003e\u003c/a\u003e chore: Bump markdownlint-cli2 from 0.20.0 to 0.21.0 (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6542\"\u003e#6542\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/43c4e386c374c56a7de326e20f51eb7a71c0edda\"\u003e\u003ccode\u003e43c4e38\u003c/code\u003e\u003c/a\u003e chore: Bump actions/dependency-review-action from 4.8.2 to 4.8.3 (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6540\"\u003e#6540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/3b4057303e63172ed8a4dde8d35f6ce1f7a5eb58\"\u003e\u003ccode\u003e3b40573\u003c/code\u003e\u003c/a\u003e chore: Bump lycheeverse/lychee-action from 2.7.0 to 2.8.0 (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6539\"\u003e#6539\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fastify/compare/v4.29.0...v5.8.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `next` from 13.5.11 to 15.5.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vercel/next.js/releases\"\u003enext's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev15.5.10\u003c/h2\u003e\n\u003cp\u003ePlease refer the following changelogs for more information about this security release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://vercel.com/changelog/summaries-of-cve-2025-59471-and-cve-2025-59472\"\u003ehttps://vercel.com/changelog/summaries-of-cve-2025-59471-and-cve-2025-59472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003ehttps://vercel.com/changelog/summary-of-cve-2026-23864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev15.4.11\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.3.9\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.2.9\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.1.12\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.0.8\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/60a2aa97b6692d3a56e483f0ff93febaf6f33fd6\"\u003e\u003ccode\u003e60a2aa9\u003c/code\u003e\u003c/a\u003e v15.5.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/e5b834d208fe0edf64aa26b5d76dcf6a176500ec\"\u003e\u003ccode\u003ee5b834d\u003c/code\u003e\u003c/a\u003e fetch(next/image): reduce maximumResponseBody from 300MB to 50MB (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/88588\"\u003e#88588\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/39a2f6a8d13dfa50cee843f93241c8c1dbaf801e\"\u003e\u003ccode\u003e39a2f6a\u003c/code\u003e\u003c/a\u003e feat(next/image)!: add \u003ccode\u003eimages.maximumResponseBody\u003c/code\u003e config (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/88183\"\u003e#88183\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/bf9f0843edab3a7cf9d4c85b315bc33c87b282ce\"\u003e\u003ccode\u003ebf9f084\u003c/code\u003e\u003c/a\u003e Sync DoS mitigations for React Flight\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/c5de33e93ccccaf3bee60cf50603e2152f9886e1\"\u003e\u003ccode\u003ec5de33e\u003c/code\u003e\u003c/a\u003e v15.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/dd233994aeb24e906cdb9aedca5447cdef401792\"\u003e\u003ccode\u003edd23399\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/facebook/react/issues/35351\"\u003efacebook/react#35351\u003c/a\u003e for 15.5.8 (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/87086\"\u003e#87086\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/7526cd6f24300726964eaba78927fe2a9c3fed5e\"\u003e\u003ccode\u003e7526cd6\u003c/code\u003e\u003c/a\u003e v15.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/1e9ec4133af3657964833bfcc9abb0ee73fb19f0\"\u003e\u003ccode\u003e1e9ec41\u003c/code\u003e\u003c/a\u003e Update React Version (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/41\"\u003e#41\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/16141e5df9ce51136ba42988b574981f89d01081\"\u003e\u003ccode\u003e16141e5\u003c/code\u003e\u003c/a\u003e Update React Version (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/30\"\u003e#30\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/e01e589e181d66d48c57698238b8b7f59218dfef\"\u003e\u003ccode\u003ee01e589\u003c/code\u003e\u003c/a\u003e Backport Next.js changes to v15.5.8 (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/23\"\u003e#23\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vercel/next.js/compare/v13.5.11...v15.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `simple-git` from 3.25.0 to 3.32.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/releases\"\u003esimple-git's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esimple-git@3.32.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ef704208: Enhanced \u003ccode\u003eprotocol.allow\u003c/code\u003e checks in \u003ccode\u003eallowUnsafeExtProtocol\u003c/code\u003e handling.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/CodeAnt-AI-Security\"\u003e\u003ccode\u003e@​CodeAnt-AI-Security\u003c/code\u003e\u003c/a\u003e for identifying the issue\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8d02097: Enhanced clone unsafe switch detection.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e23b070f: Fix regex for detecting unsafe clone options\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/stevenwdv\"\u003e\u003ccode\u003e@​stevenwdv\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e1effd8e: Enhances the \u003ccode\u003eunsafe\u003c/code\u003e plugin to block additional cases where the \u003ccode\u003e-u\u003c/code\u003e switch may be disguised\nalong with other single character options.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/JuHwiSang\"\u003e\u003ccode\u003e@​JuHwiSang\u003c/code\u003e\u003c/a\u003e for identifying this as vulnerability.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed5fd4fe: Use task runner for logging use of deprecated (already no-op) functions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.31.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea44184f: Resolve NPM publish steps\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.30.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ebc77774: Correctly identify current branch name when using \u003ccode\u003egit.status\u003c/code\u003e in a cloned empty repo.\u003c/p\u003e\n\u003cp\u003ePreviously \u003ccode\u003egit.status\u003c/code\u003e would report the current branch name as \u003ccode\u003eNo\u003c/code\u003e. Thank you to \u003ca href=\"https://github.com/MaddyGuthridge\"\u003e\u003ccode\u003e@​MaddyGuthridge\u003c/code\u003e\u003c/a\u003e for identifying this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.28.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2adf47d: Allow repeating git options like \u003ccode\u003e{'--opt': ['value1', 'value2']}\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.27.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/blob/main/simple-git/CHANGELOG.md\"\u003esimple-git's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.32.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ef704208: Enhanced \u003ccode\u003eprotocol.allow\u003c/code\u003e checks in \u003ccode\u003eallowUnsafeExtProtocol\u003c/code\u003e handling.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/CodeAnt-AI-Security\"\u003e\u003ccode\u003e@​CodeAnt-AI-Security\u003c/code\u003e\u003c/a\u003e for identifying the issue\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8d02097: Enhanced clone unsafe switch detection.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e23b070f: Fix regex for detecting unsafe clone options\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/stevenwdv\"\u003e\u003ccode\u003e@​stevenwdv\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e1effd8e: Enhances the \u003ccode\u003eunsafe\u003c/code\u003e plugin to block additional cases where the \u003ccode\u003e-u\u003c/code\u003e switch may be disguised\nalong with other single character options.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/JuHwiSang\"\u003e\u003ccode\u003e@​JuHwiSang\u003c/code\u003e\u003c/a\u003e for identifying this as vulnerability.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed5fd4fe: Use task runner for logging use of deprecated (already no-op) functions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.31.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea44184f: Resolve NPM publish steps\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.31.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e22dc93f: Custom binary plugin should support the use of \u003ccode\u003e~\u003c/code\u003e character, used by Windows to shorten long folder names\nand folder names that have spaces in them (eg: \u003ccode\u003eC:\\Program Files\u003c/code\u003e might become \u003ccode\u003eC:\\PROGRA~1\u003c/code\u003e).\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/skyshineb\"\u003e\u003ccode\u003e@​skyshineb\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/a1170e506eeeaade4a242bfbf6d0620d57872364\"\u003e\u003ccode\u003ea1170e5\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/f7042088aa2dac59e3c49a84d7a2f4b26048a257\"\u003e\u003ccode\u003ef704208\u003c/code\u003e\u003c/a\u003e In extension to CVE-2022-25912, switch to case-insensitive check for `protoco...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/4bb20811eb35c0fa5437553cad4eb8ebf8f6f6e6\"\u003e\u003ccode\u003e4bb2081\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/7ae7537737bafc1e6559a28816785b10926fb095\"\u003e\u003ccode\u003e7ae7537\u003c/code\u003e\u003c/a\u003e Match tokens to word boundary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/c47ad103b07ce768cf69aec63e0c9f7f77a1ab0f\"\u003e\u003ccode\u003ec47ad10\u003c/code\u003e\u003c/a\u003e Lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/8d02097b726c2bc5360b4f55ee3ecb7e09648e4d\"\u003e\u003ccode\u003e8d02097\u003c/code\u003e\u003c/a\u003e Enhanced clone switch detection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/f6909a52807512cb4e29a654db2dcd409b019113\"\u003e\u003ccode\u003ef6909a5\u003c/code\u003e\u003c/a\u003e Remove test timeout override\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/77406267ceb19aa901495b6ae414020daf789ebf\"\u003e\u003ccode\u003e7740626\u003c/code\u003e\u003c/a\u003e Update plugin.unsafe.spec.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/b562a6c4c1a226d9c7789b72c76784f334c1efac\"\u003e\u003ccode\u003eb562a6c\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/23b070f0a4d320af5e745a42ae6176a629409566\"\u003e\u003ccode\u003e23b070f\u003c/code\u003e\u003c/a\u003e Fix regex for CLONE_OPTIONS constant (\u003ca href=\"https://github.com/steveukx/git-js/tree/HEAD/simple-git/issues/1122\"\u003e#1122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/steveukx/git-js/commits/simple-git@3.32.3/simple-git\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for simple-git since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `base-x` from 3.0.9 to 3.0.11\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/043a888a9bae09bc4b40500e37792e2c6398e9f2\"\u003e\u003ccode\u003e043a888\u003c/code\u003e\u003c/a\u003e 3.0.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/2705dddd2565b455641985974b534291d8defb31\"\u003e\u003ccode\u003e2705ddd\u003c/code\u003e\u003c/a\u003e [backport 3.x] Prohibit char codes that would overflow the \u003ccode\u003eBASE_MAP\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/3d43c0e16bfbc045a0a8bb6423e6e336df81b512\"\u003e\u003ccode\u003e3d43c0e\u003c/code\u003e\u003c/a\u003e 3.0.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/0a3544695fa6800649a8b78ed46cece61bcdbbe5\"\u003e\u003ccode\u003e0a35446\u003c/code\u003e\u003c/a\u003e Improve decoding performance\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/cryptocoinjs/base-x/compare/v3.0.9...v3.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cipher-base` from 1.0.4 to 1.0.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/browserify/cipher-base/blob/master/CHANGELOG.md\"\u003ecipher-base's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.6...v1.0.7\"\u003ev1.0.7\u003c/a\u003e - 2025-09-24\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003eto-buffer\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/fd1e5eeafccbc8eaa827ee6b9b60c14608aa784f\"\u003e\u003ccode\u003efd1e5ee\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/08ba8034223a53d300b7dccf33d8f14e52379a34\"\u003e\u003ccode\u003e08ba803\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.5...v1.0.6\"\u003ev1.0.6\u003c/a\u003e - 2024-11-26\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] io.js 3.0 - Node.js 5.3 typed array support \u003ca href=\"https://github.com/browserify/cipher-base/commit/b7ddd2ac24e65cc47befc1e0eb5026422f8ab037\"\u003e\u003ccode\u003eb7ddd2a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.4...v1.0.5\"\u003ev1.0.5\u003c/a\u003e - 2024-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] standard -\u0026gt; eslint, make test dir, etc \u003ca href=\"https://github.com/browserify/cipher-base/commit/ae02fd6624c41ac4ac18077be797111d1955bc76\"\u003e\u003ccode\u003eae02fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] migrate from travis to GHA \u003ca href=\"https://github.com/browserify/cipher-base/commit/66387d71461287ad9067bb1bcbfdc47403a33ee7\"\u003e\u003ccode\u003e66387d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix package.json indentation \u003ca href=\"https://github.com/browserify/cipher-base/commit/5c02918ac58c875ed36913c2dc3e1043f4d1c99c\"\u003e\u003ccode\u003e5c02918\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] return valid values on multi-byte-wide TypedArray input \u003ca href=\"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294\"\u003e\u003ccode\u003e8fd1364\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/88dc806806d3dc41444dbf639c87c00f82c949b3\"\u003e\u003ccode\u003e88dc806\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003enpmignore\u003c/code\u003e and \u003ccode\u003esafe-publish-latest\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/7a137d749ce7ea7ea56b9c096844b1b8ab723f61\"\u003e\u003ccode\u003e7a137d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly apps should have lockfiles \u003ca href=\"https://github.com/browserify/cipher-base/commit/42528f291db16bf2e7d5f831ebe2ad87fd0b1f42\"\u003e\u003ccode\u003e42528f2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003einherits\u003c/code\u003e, \u003ccode\u003esafe-buffer\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/0e7a2d9a33a391e82fa9cf512d6e25cc91ab8613\"\u003e\u003ccode\u003e0e7a2d9\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add missing \u003ccode\u003eengines.node\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/f2dc13e47bbcf3c873db9a9e0f83e5f29d0783fe\"\u003e\u003ccode\u003ef2dc13e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/00567180c846dd3db3848c9223991c58a0d5490c\"\u003e\u003ccode\u003e0056718\u003c/code\u003e\u003c/a\u003e v1.0.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/fd1e5eeafccbc8eaa827ee6b9b60c14608aa784f\"\u003e\u003ccode\u003efd1e5ee\u003c/code\u003e\u003c/a\u003e [Refactor] use \u003ccode\u003eto-buffer\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/08ba8034223a53d300b7dccf33d8f14e52379a34\"\u003e\u003ccode\u003e08ba803\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/f5249f94611506ef35a8be4d48a3fc5ecf1fac63\"\u003e\u003ccode\u003ef5249f9\u003c/code\u003e\u003c/a\u003e v1.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/b7ddd2ac24e65cc47befc1e0eb5026422f8ab037\"\u003e\u003ccode\u003eb7ddd2a\u003c/code\u003e\u003c/a\u003e [Fix] io.js 3.0 - Node.js 5.3 typed array support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/f03cebfdad1cba1d56614c58affa303b0fa2a43e\"\u003e\u003ccode\u003ef03cebf\u003c/code\u003e\u003c/a\u003e v1.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/88dc806806d3dc41444dbf639c87c00f82c949b3\"\u003e\u003ccode\u003e88dc806\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/7a137d749ce7ea7ea56b9c096844b1b8ab723f61\"\u003e\u003ccode\u003e7a137d7\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003enpmignore\u003c/code\u003e and \u003ccode\u003esafe-publish-latest\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/5c02918ac58c875ed36913c2dc3e1043f4d1c99c\"\u003e\u003ccode\u003e5c02918\u003c/code\u003e\u003c/a\u003e [meta] fix package.json indentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294\"\u003e\u003ccode\u003e8fd1364\u003c/code\u003e\u003c/a\u003e [Fix] return valid values on multi-byte-wide TypedArray input\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/crypto-browserify/cipher-base/compare/v1.0.4...v1.0.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for cipher-base since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dottie` from 2.0.6 to 2.0.7\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mickhansen/dottie.js/commit/334c32b80ed536522b567ee6a844caf8e5fef9c3\"\u003e\u003ccode\u003e334c32b\u003c/code\u003e\u003c/a\u003e 2.0.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mickhansen/dottie.js/commit/7e8fa1345a4b46325f0eab8d7aeb1c4deaefdb14\"\u003e\u003ccode\u003e7e8fa13\u003c/code\u003e\u003c/a\u003e fix: check all path segments for dangerous keys (bypass of CVE-2023-2… (\u003ca href=\"https://redirect.github.com/mickhansen/dottie.js/issues/43\"\u003e#43\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mickhansen/dottie.js/commit/a72eb993212939d60a2801843ce3e968dfc5c6a6\"\u003e\u003ccode\u003ea72eb99\u003c/code\u003e\u003c/a\u003e Update test GitHub Action (\u003ca href=\"https://redirect.github.com/mickhansen/dottie.js/issues/40\"\u003e#40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mickhansen/dottie.js/compare/v2.0.6...v2.0.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 4.0.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.4...v4.0.5\"\u003ev4.0.5\u003c/a\u003e - 2025-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] Switch to newer v8 prediction library; enable node 24 testing \u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c908563...\n\n_Description has been truncated_","html_url":"https://github.com/trizist/helium-program-library/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/trizist%2Fhelium-program-library/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"},{"uuid":"4013764644","node_id":"PR_kwDONbXe7s7Hdftt","number":2,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 1 directory with 8 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-14T00:47:23.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-02T23:01:45.000Z","updated_at":"2026-03-14T00:47:25.000Z","time_to_close":956738,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":8,"packages":[{"name":"mongoose","old_version":"8.8.0","new_version":"8.23.0"},{"name":"diff","old_version":"5.2.0","new_version":"7.0.0"},{"name":"form-data","old_version":"4.0.0","new_version":"4.0.4"},{"name":"formidable","old_version":"2.1.2","new_version":"3.5.4"},{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"nth-check","old_version":"1.0.2","new_version":"2.1.1"},{"name":"path-to-regexp","old_version":"0.1.10","new_version":"8.3.0"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 2 updates in the / directory: [js-yaml](https://github.com/nodeca/js-yaml) and @isaacs/brace-expansion.\n\nUpdates `mongoose` from 8.8.0 to 8.23.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Automattic/mongoose/releases\"\u003emongoose's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e8.23.0 / 2026-02-09\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efeat(document): add flattenUUIDs option to toObject() and toJSON() (backport \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15021\"\u003e#15021\u003c/a\u003e to 8.x)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.22.1 / 2025-02-04\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle other top-level query operators in sanitizeFilter\u003c/li\u003e\n\u003cli\u003efix(document): when cloning a doc with subdocs, make sure the subdocs parent is the cloned doc \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15904\"\u003e#15904\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15901\"\u003e#15901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(models): support Mongoose query casting in AnyBulkWriteOperation filter property \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15910\"\u003e#15910\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add toBSON() to documents \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15927\"\u003e#15927\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.22.0 / 2026-01-27\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efeat(model): allow passing strict option to hydrate() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15944\"\u003e#15944\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15940\"\u003e#15940\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.21.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(clone): fix parent doc for map subdocuments and array subdocuments \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15958\"\u003e#15958\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(document): when cloning a doc with subdocs, make sure the subdocs parent is the cloned doc \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15904\"\u003e#15904\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15901\"\u003e#15901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: respect currentTime schema option in bulkWrite updates \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15976\"\u003e#15976\u003c/a\u003e \u003ca href=\"https://github.com/sderrow\"\u003esderrow\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(models): support Mongoose query casting in AnyBulkWriteOperation filter property \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15910\"\u003e#15910\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add toBSON() to documents \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15927\"\u003e#15927\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.21.0 / 2025-12-29\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efeat(document): add support for getAtomics() to allow custom container types to utilize atomics \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15817\"\u003e#15817\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(document+model): pass options to pre('deleteOne') and update+options to pre('updateOne') hooks \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15908\"\u003e#15908\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15870\"\u003e#15870\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add support for typescript style enums \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15914\"\u003e#15914\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15913\"\u003e#15913\u003c/a\u003e \u003ca href=\"https://github.com/mjfwebb\"\u003emjfwebb\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.20.4 / 2025-12-18\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(model): ensure $isDeleted is set after calling doc.deleteOne() successfully \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15898\"\u003e#15898\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(document): use bitwise OR to accumulate version mode flags \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15893\"\u003e#15893\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15888\"\u003e#15888\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.20.3 / 2025-12-15\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eperf: use Object.hasOwn instead of Object#hasOwnProperty \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15875\"\u003e#15875\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: improve error when calling Document.prototype.init() with null/undefined \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15812\"\u003e#15812\u003c/a\u003e \u003ca href=\"https://github.com/Vegapunk-debug\"\u003eVegapunk-debug\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(schema): avoid treating paths with default: null as required \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15889\"\u003e#15889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(schema): allow partial statics to schema.statics() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15780\"\u003e#15780\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.20.2 / 2025-12-05\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(model): bump version if necessary after successful bulkSave() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15809\"\u003e#15809\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15800\"\u003e#15800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(bulkWrite): pass overwriteImmutable option to castUpdate fixes \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15789\"\u003e#15789\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15782\"\u003e#15782\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15781\"\u003e#15781\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(schema): allow calling schema.static() with as TStatics \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15794\"\u003e#15794\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15780\"\u003e#15780\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.20.1 / 2025-11-20\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003etypes: correct Model.schema type and fix unknown check for this param type in schema.methods \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15750\"\u003e#15750\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15693\"\u003e#15693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add detailed loadClass() TypeScript usage guide \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15731\"\u003e#15731\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/12813\"\u003e#12813\u003c/a\u003e \u003ca href=\"https://github.com/Necro-Rohan\"\u003eNecro-Rohan\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md\"\u003emongoose's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e8.23.0 / 2026-02-09\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efeat(document): add flattenUUIDs option to toObject() and toJSON() (backport \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15021\"\u003e#15021\u003c/a\u003e to 8.x)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e9.1.6 / 2026-02-04\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle other top-level query operators in sanitizeFilter\u003c/li\u003e\n\u003cli\u003efix(types): fix toObject() type inference with timestamps + virtuals \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15975\"\u003e#15975\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15965\"\u003e#15965\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(populate): defer subpopulate until after match functions to avoid comparing populated subdocs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15981\"\u003e#15981\u003c/a\u003e \u003ca href=\"https://redirect.github.com/mongodb-js/mongoose-autopopulate/issues/112\"\u003emongodb-js/mongoose-autopopulate#112\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(DocumentArray): correctly clone subdocument when updating document array \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15978\"\u003e#15978\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15973\"\u003e#15973\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(documentArray): fix change tracking for documentArrays in nested maps \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15983\"\u003e#15983\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15970\"\u003e#15970\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: clarify that you need to explicitly create timeseries collection before inserting document \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15990\"\u003e#15990\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15986\"\u003e#15986\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.22.1 / 2026-02-04\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle other top-level query operators in sanitizeFilter\u003c/li\u003e\n\u003cli\u003efix(document): when cloning a doc with subdocs, make sure the subdocs parent is the cloned doc \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15904\"\u003e#15904\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15901\"\u003e#15901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(models): support Mongoose query casting in AnyBulkWriteOperation filter property \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15910\"\u003e#15910\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add toBSON() to documents \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15927\"\u003e#15927\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e7.8.9 / 2026-02-04\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle other top-level query operators in sanitizeFilter\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.22.0 / 2026-01-27\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efeat(model): allow passing strict option to hydrate() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15944\"\u003e#15944\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15940\"\u003e#15940\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.21.1 / 2026-01-23\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(clone): fix parent doc for map subdocuments and array subdocuments \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15958\"\u003e#15958\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(document): when cloning a doc with subdocs, make sure the subdocs parent is the cloned doc \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15904\"\u003e#15904\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15901\"\u003e#15901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: respect currentTime schema option in bulkWrite updates \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15976\"\u003e#15976\u003c/a\u003e \u003ca href=\"https://github.com/sderrow\"\u003esderrow\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(models): support Mongoose query casting in AnyBulkWriteOperation filter property \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15910\"\u003e#15910\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add toBSON() to documents \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15927\"\u003e#15927\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e9.1.5 / 2026-01-20\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(map): validate map subdocument when loaded with init \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15960\"\u003e#15960\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15957\"\u003e#15957\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(discriminator): prevent indexes and callQueue duplication with shared nested schemas \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15974\"\u003e#15974\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15966\"\u003e#15966\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(subdocuments): do not pass parent path on init \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15970\"\u003e#15970\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15969\"\u003e#15969\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15682\"\u003e#15682\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(inferrawdoctype): correct handling for subdocs and doc arrays \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15967\"\u003e#15967\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/13772\"\u003e#13772\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: improve grammar and clarity in TypeScript schema comments \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15971\"\u003e#15971\u003c/a\u003e \u003ca href=\"https://github.com/harshsinghpujari\"\u003eharshsinghpujari\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e9.1.4 / 2026-01-15\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: attach sessions to docs retrieved by cursor \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15953\"\u003e#15953\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15949\"\u003e#15949\u003c/a\u003e \u003ca href=\"https://github.com/mjfwalsh\"\u003emjfwalsh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): make hydrate() handle nested schema arrays \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15964\"\u003e#15964\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15956\"\u003e#15956\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(clone): fix parent doc for map subdocuments and array subdocuments \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15958\"\u003e#15958\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15954\"\u003e#15954\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent crash when accessing nested paths on prototype \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15962\"\u003e#15962\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15961\"\u003e#15961\u003c/a\u003e \u003ca href=\"https://github.com/som14062005\"\u003esom14062005\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/06da34796ad8341e6c141d9198867a8adf87bb9b\"\u003e\u003ccode\u003e06da347\u003c/code\u003e\u003c/a\u003e chore: release 8.23.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/6f00472fbfccc926e1c75f941607f2601f5033b2\"\u003e\u003ccode\u003e6f00472\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15993\"\u003e#15993\u003c/a\u003e from Automattic/8.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/fb9a4528d080c0a1a8f3f543a3f9847d57abafdb\"\u003e\u003ccode\u003efb9a452\u003c/code\u003e\u003c/a\u003e Update lib/document.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/0d0b0de092d4ce706ace35211573f6a8b365c4ef\"\u003e\u003ccode\u003e0d0b0de\u003c/code\u003e\u003c/a\u003e Update lib/document.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/1f0ae9932f07b30782ab863debfc32eb60485088\"\u003e\u003ccode\u003e1f0ae99\u003c/code\u003e\u003c/a\u003e Merge branch '7.x' into 8.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/ded2edb3aef3e9a1a5ffa634550c878af0601300\"\u003e\u003ccode\u003eded2edb\u003c/code\u003e\u003c/a\u003e docs: fix changelog year\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/a60200b2ce81cab4e879fe094a2da91b7ec31172\"\u003e\u003ccode\u003ea60200b\u003c/code\u003e\u003c/a\u003e docs: fix changelog date years\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/41fb971b28ba26a805ff4577502b25ffbaff4e14\"\u003e\u003ccode\u003e41fb971\u003c/code\u003e\u003c/a\u003e docs: add missing changelog entries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/472e7c7072e6696ead2cc06123b18a2068c1e04c\"\u003e\u003ccode\u003e472e7c7\u003c/code\u003e\u003c/a\u003e chore: release 8.22.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/17351494cd540ea60f24515f99e88506a95c5b8b\"\u003e\u003ccode\u003e1735149\u003c/code\u003e\u003c/a\u003e Merge branch '7.x' into 8.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Automattic/mongoose/compare/8.8.0...8.23.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for mongoose since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diff` from 5.2.0 to 7.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e7.0.0\u003c/h2\u003e\n\u003cp\u003eJust a single (breaking) bugfix, undoing a behaviour change introduced accidentally in 6.0.0:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/554\"\u003e#554\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003ediffWords\u003c/code\u003e treats numbers and underscores as word characters again.\u003c/strong\u003e This behaviour was broken in v6.0.0.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.0\u003c/h2\u003e\n\u003cp\u003eThis is a release containing many, \u003cem\u003emany\u003c/em\u003e breaking changes. The objective of this release was to carry out a mass fix, in one go, of all the open bugs and design problems that required breaking changes to fix. A substantial, but exhaustive, changelog is below.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v6.0.0\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/497\"\u003e#497\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003ediffWords\u003c/code\u003e behavior has been radically changed.\u003c/strong\u003e Previously, even with \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e, runs of whitespace were tokens, which led to unhelpful and unintuitive diffing behavior in typical texts. Specifically, even when two texts contained overlapping passages, \u003ccode\u003ediffWords\u003c/code\u003e would sometimes choose to delete all the words from the old text and insert them anew in their new positions in order to avoid having to delete or insert whitespace tokens. Whitespace sequences are no longer tokens as of this release, which affects both the generated diffs and the \u003ccode\u003ecount\u003c/code\u003es.\u003c/p\u003e\n\u003cp\u003eRuns of whitespace are still tokens in \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eAs part of the changes to \u003ccode\u003ediffWords\u003c/code\u003e, \u003cstrong\u003ea new \u003ccode\u003e.postProcess\u003c/code\u003e method has been added on the base \u003ccode\u003eDiff\u003c/code\u003e type\u003c/strong\u003e, which can be overridden in custom \u003ccode\u003eDiff\u003c/code\u003e implementations.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ediffLines\u003c/code\u003e with \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e will no longer ignore the insertion or deletion of entire extra lines of whitespace at the end of the text\u003c/strong\u003e. Previously, these would not show up as insertions or deletions, as a side effect of a hack in the base diffing algorithm meant to help ignore whitespace in \u003ccode\u003ediffWords\u003c/code\u003e. More generally, \u003cstrong\u003ethe undocumented special handling in the core algorithm for ignored terminals has been removed entirely.\u003c/strong\u003e (This special case behavior used to rewrite the final two change objects in a scenario where the final change object was an addition or deletion and its \u003ccode\u003evalue\u003c/code\u003e was treated as equal to the empty string when compared using the diff object's \u003ccode\u003e.equals\u003c/code\u003e method.)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/500\"\u003e#500\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003ediffChars\u003c/code\u003e now diffs Unicode code points\u003c/strong\u003e instead of UTF-16 code units.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/508\"\u003e#508\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003eparsePatch\u003c/code\u003e now always runs in what was previously \u0026quot;strict\u0026quot; mode; the undocumented \u003ccode\u003estrict\u003c/code\u003e option has been removed.\u003c/strong\u003e Previously, by default, \u003ccode\u003eparsePatch\u003c/code\u003e (and other patch functions that use it under the hood to parse patches) would accept a patch where the line counts in the headers were inconsistent with the actual patch content - e.g. where a hunk started with the header \u003ccode\u003e@@ -1,3 +1,6 @@\u003c/code\u003e, indicating that the content below spanned 3 lines in the old file and 6 lines in the new file, but then the actual content below the header consisted of some different number of lines, say 10 lines of context, 5 deletions, and 1 insertion. Actually trying to work with these patches using \u003ccode\u003eapplyPatch\u003c/code\u003e or \u003ccode\u003emerge\u003c/code\u003e, however, would produce incorrect results instead of just ignoring the incorrect headers, making this \u0026quot;feature\u0026quot; more of a trap than something actually useful. It's been ripped out, and now we are always \u0026quot;strict\u0026quot; and will reject patches where the line counts in the headers aren't consistent with the actual patch content.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/435\"\u003e#435\u003c/a\u003e \u003cstrong\u003eFix \u003ccode\u003eparsePatch\u003c/code\u003e handling of control characters.\u003c/strong\u003e \u003ccode\u003eparsePatch\u003c/code\u003e used to interpret various unusual control characters - namely vertical tabs, form feeds, lone carriage returns without a line feed, and EBCDIC NELs - as line breaks when parsing a patch file. This was inconsistent with the behavior of both JsDiff's own \u003ccode\u003ediffLines\u003c/code\u003e method and also the Unix \u003ccode\u003ediff\u003c/code\u003e and \u003ccode\u003epatch\u003c/code\u003e utils, which all simply treat those control characters as ordinary characters. The result of this discrepancy was that some well-formed patches - produced either by \u003ccode\u003ediff\u003c/code\u003e or by JsDiff itself and handled properly by the \u003ccode\u003epatch\u003c/code\u003e util - would be wrongly parsed by \u003ccode\u003eparsePatch\u003c/code\u003e, with the effect that it would disregard the remainder of a hunk after encountering one of these control characters.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/439\"\u003e#439\u003c/a\u003e \u003cstrong\u003ePrefer diffs that order deletions before insertions.\u003c/strong\u003e When faced with a choice between two diffs with an equal total edit distance, the Myers diff algorithm generally prefers one that does deletions before insertions rather than insertions before deletions. For instance, when diffing \u003ccode\u003eabcd\u003c/code\u003e against \u003ccode\u003eacbd\u003c/code\u003e, it will prefer a diff that says to delete the \u003ccode\u003eb\u003c/code\u003e and then insert a new \u003ccode\u003eb\u003c/code\u003e after the \u003ccode\u003ec\u003c/code\u003e, over a diff that says to insert a \u003ccode\u003ec\u003c/code\u003e before the \u003ccode\u003eb\u003c/code\u003e and then delete the existing \u003ccode\u003ec\u003c/code\u003e. JsDiff deviated from the published Myers algorithm in a way that led to it having the opposite preference in many cases, including that example. This is now fixed, meaning diffs output by JsDiff will more accurately reflect what the published Myers diff algorithm would output.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/455\"\u003e#455\u003c/a\u003e \u003cstrong\u003eThe \u003ccode\u003eadded\u003c/code\u003e and \u003ccode\u003eremoved\u003c/code\u003e properties of change objects are now guaranteed to be set to a boolean value.\u003c/strong\u003e (Previously, they would be set to \u003ccode\u003eundefined\u003c/code\u003e or omitted entirely instead of setting them to false.)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/464\"\u003e#464\u003c/a\u003e Specifying \u003ccode\u003e{maxEditLength: 0}\u003c/code\u003e now sets a max edit length of 0 instead of no maximum.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/460\"\u003e#460\u003c/a\u003e \u003cstrong\u003eAdded \u003ccode\u003eoneChangePerToken\u003c/code\u003e option.\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/467\"\u003e#467\u003c/a\u003e \u003cstrong\u003eConsistent ordering of arguments to \u003ccode\u003ecomparator(left, right)\u003c/code\u003e.\u003c/strong\u003e Values from the old array will now consistently be passed as the first argument (\u003ccode\u003eleft\u003c/code\u003e) and values from the new array as the second argument (\u003ccode\u003eright\u003c/code\u003e). Previously this was almost (but not quite) always the other way round.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/480\"\u003e#480\u003c/a\u003e \u003cstrong\u003ePassing \u003ccode\u003emaxEditLength\u003c/code\u003e to \u003ccode\u003ecreatePatch\u003c/code\u003e \u0026amp; \u003ccode\u003ecreateTwoFilesPatch\u003c/code\u003e now works properly\u003c/strong\u003e (i.e. returns undefined if the max edit distance is exceeded; previous behavior was to crash with a \u003ccode\u003eTypeError\u003c/code\u003e if the edit distance was exceeded).\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/486\"\u003e#486\u003c/a\u003e \u003cstrong\u003eThe \u003ccode\u003eignoreWhitespace\u003c/code\u003e option of \u003ccode\u003ediffLines\u003c/code\u003e behaves more sensibly now.\u003c/strong\u003e \u003ccode\u003evalue\u003c/code\u003es in returned change objects now include leading/trailing whitespace even when \u003ccode\u003eignoreWhitespace\u003c/code\u003e is used, just like how with \u003ccode\u003eignoreCase\u003c/code\u003e the \u003ccode\u003evalue\u003c/code\u003es still reflect the case of one of the original texts instead of being all-lowercase. \u003ccode\u003eignoreWhitespace\u003c/code\u003e is also now compatible with \u003ccode\u003enewlineIsToken\u003c/code\u003e. Finally, \u003cstrong\u003e\u003ccode\u003ediffTrimmedLines\u003c/code\u003e is deprecated\u003c/strong\u003e (and removed from the docs) in favour of using \u003ccode\u003ediffLines\u003c/code\u003e with \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e; the two are, and always have been, equivalent.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/490\"\u003e#490\u003c/a\u003e \u003cstrong\u003eWhen calling diffing functions in async mode by passing a \u003ccode\u003ecallback\u003c/code\u003e option, the diff result will now be passed as the \u003cem\u003efirst\u003c/em\u003e argument to the callback instead of the second.\u003c/strong\u003e (Previously, the first argument was never used at all and would always have value \u003ccode\u003eundefined\u003c/code\u003e.)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/489\"\u003e#489\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003ethis.options\u003c/code\u003e no longer exists on \u003ccode\u003eDiff\u003c/code\u003e objects.\u003c/strong\u003e Instead, \u003ccode\u003eoptions\u003c/code\u003e is now passed as an argument to methods that rely on options, like \u003ccode\u003eequals(left, right, options)\u003c/code\u003e. This fixes a race condition in async mode, where diffing behaviour could be changed mid-execution if a concurrent usage of the same \u003ccode\u003eDiff\u003c/code\u003e instances overwrote its \u003ccode\u003eoptions\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/518\"\u003e#518\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003elinedelimiters\u003c/code\u003e no longer exists\u003c/strong\u003e on patch objects; instead, when a patch with Windows-style CRLF line endings is parsed, \u003cstrong\u003ethe lines in \u003ccode\u003elines\u003c/code\u003e will end with \u003ccode\u003e\\r\u003c/code\u003e\u003c/strong\u003e. There is now a \u003cstrong\u003enew \u003ccode\u003eautoConvertLineEndings\u003c/code\u003e option, on by default\u003c/strong\u003e, which makes it so that when a patch with Windows-style line endings is applied to a source file with Unix style line endings, the patch gets autoconverted to use Unix-style line endings, and when a patch with Unix-style line endings is applied to a source file with Windows-style line endings, it gets autoconverted to use Windows-style line endings.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/521\"\u003e#521\u003c/a\u003e \u003cstrong\u003ethe \u003ccode\u003ecallback\u003c/code\u003e option is now supported by \u003ccode\u003estructuredPatch\u003c/code\u003e, \u003ccode\u003ecreatePatch\u003c/code\u003e, and \u003ccode\u003ecreateTwoFilesPatch\u003c/code\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/529\"\u003e#529\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003eparsePatch\u003c/code\u003e can now parse patches where lines starting with \u003ccode\u003e--\u003c/code\u003e or \u003ccode\u003e++\u003c/code\u003e are deleted/inserted\u003c/strong\u003e; previously, there were edge cases where the parser would choke on valid patches or give wrong results.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/530\"\u003e#530\u003c/a\u003e \u003cstrong\u003eAdded \u003ccode\u003eignoreNewlineAtEof\u003c/code\u003e option to \u003ccode\u003ediffLines\u003c/code\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/533\"\u003e#533\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003eapplyPatch\u003c/code\u003e uses an entirely new algorithm for fuzzy matching.\u003c/strong\u003e Differences between the old and new algorithm are as follows:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003efuzzFactor\u003c/code\u003e now indicates the maximum \u003ca href=\"https://en.wikipedia.org/wiki/Levenshtein_distance\"\u003e\u003cem\u003eLevenshtein\u003c/em\u003e distance\u003c/a\u003e that there can be between the context shown in a hunk and the actual file content at a location where we try to apply the hunk. (Previously, it represented a maximum \u003ca href=\"https://en.wikipedia.org/wiki/Hamming_distance\"\u003e\u003cem\u003eHamming\u003c/em\u003e distance\u003c/a\u003e, meaning that a single insertion or deletion in the source file could stop a hunk from applying even with a high \u003ccode\u003efuzzFactor\u003c/code\u003e.)\u003c/li\u003e\n\u003cli\u003eA hunk containing a deletion can now only be applied in a context where the line to be deleted actually appears verbatim. (Previously, as long as enough context lines in the hunk matched, \u003ccode\u003eapplyPatch\u003c/code\u003e would apply the hunk anyway and delete a completely different line.)\u003c/li\u003e\n\u003cli\u003eThe context line immediately before and immediately after an insertion must match exactly between the hunk and the file for a hunk to apply. (Previously this was not required.)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/535\"\u003e#535\u003c/a\u003e \u003cstrong\u003eA bug in patch generation functions is now fixed\u003c/strong\u003e that would sometimes previously cause \u003ccode\u003e\\ No newline at end of file\u003c/code\u003e to appear in the wrong place in the generated patch, resulting in the patch being invalid. \u003cstrong\u003eThese invalid patches can also no longer be applied successfully with \u003ccode\u003eapplyPatch\u003c/code\u003e.\u003c/strong\u003e (It was already the case that tools other than jsdiff, like GNU \u003ccode\u003epatch\u003c/code\u003e, would consider them malformed and refuse to apply them; versions of jsdiff with this fix now do the same thing if you ask them to apply a malformed patch emitted by jsdiff v5.)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/535\"\u003e#535\u003c/a\u003e \u003cstrong\u003ePassing \u003ccode\u003enewlineIsToken: true\u003c/code\u003e to \u003cem\u003epatch\u003c/em\u003e-generation functions is no longer allowed.\u003c/strong\u003e (Passing it to \u003ccode\u003ediffLines\u003c/code\u003e is still supported - it's only functions like \u003ccode\u003ecreatePatch\u003c/code\u003e where passing \u003ccode\u003enewlineIsToken\u003c/code\u003e is now an error.) Allowing it to be passed never really made sense, since in cases where the option had any effect on the output at all, the effect tended to be causing a garbled patch to be created that couldn't actually be applied to the source file.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/539\"\u003e#539\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003ediffWords\u003c/code\u003e now takes an optional \u003ccode\u003eintlSegmenter\u003c/code\u003e option\u003c/strong\u003e which should be an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e with word-level granularity. This provides better tokenization of text into words than the default behaviour, even for English but especially for some other languages for which the default behaviour is poor.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/ad8f0eb9f4cea9a4b6abdede878e7a3d0f555a73\"\u003e\u003ccode\u003ead8f0eb\u003c/code\u003e\u003c/a\u003e Prep for 7.0.0 release (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/556\"\u003e#556\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/7d113b61e6f43fbb89f7d1388eac339ebea9eeb5\"\u003e\u003ccode\u003e7d113b6\u003c/code\u003e\u003c/a\u003e Fix diffWords treating numbers and underscores as not being word characters (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/f9972d6993c268eb97530e6a4bc605303bcca77b\"\u003e\u003ccode\u003ef9972d6\u003c/code\u003e\u003c/a\u003e Fix links to commit lists in release-notes.md (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/555\"\u003e#555\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/68526b9b95fb2732c251ecadb46f228ee90281f3\"\u003e\u003ccode\u003e68526b9\u003c/code\u003e\u003c/a\u003e Update release-notes.md (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/552\"\u003e#552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/e80648d06dd3dd967622dc418bcad821b003ed4a\"\u003e\u003ccode\u003ee80648d\u003c/code\u003e\u003c/a\u003e Release V6.0.0 (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/551\"\u003e#551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/a8b639a64fed9f00954b7f3fea18b723a6283317\"\u003e\u003ccode\u003ea8b639a\u003c/code\u003e\u003c/a\u003e Remove use of regex lookbehind to improve compat with old Safari versions (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/550\"\u003e#550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/e8db85e3e9d8c4f05371c1299df2b1d83aa7653a\"\u003e\u003ccode\u003ee8db85e\u003c/code\u003e\u003c/a\u003e Bump micromatch from 4.0.5 to 4.0.8 (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/549\"\u003e#549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/6b5247d6075bdf633a9dbc5cedf82e882b2bd673\"\u003e\u003ccode\u003e6b5247d\u003c/code\u003e\u003c/a\u003e Bump webpack from 5.90.3 to 5.94.0 (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/548\"\u003e#548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/739bfff946e875b4eefe7df44f3fa9e7f756406b\"\u003e\u003ccode\u003e739bfff\u003c/code\u003e\u003c/a\u003e Fix reference to no-longer-existent 'rollup.config.js' file (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/544\"\u003e#544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/3b1ac533f16c26f99703cb3d6e1fae6982a2bc42\"\u003e\u003ccode\u003e3b1ac53\u003c/code\u003e\u003c/a\u003e 6.0.0-beta (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...7.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 4.0.0 to 4.0.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMerge tags v2.5.3 and v3.0.3 \u003ca href=\"https://github.com/form-data/form-data/commit/92613b9208556eb4ebc482fdf599fae111626fb6\"\u003e\u003ccode\u003e92613b9\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] migrate from travis to GHA \u003ca href=\"https://github.com/form-data/form-data/commit/806eda77740e6e3c67c7815afb216f2e1f187ba5\"\u003e\u003ccode\u003e806eda7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] migrate from travis to GHA \u003ca href=\"https://github.com/form-data/form-data/commit/8fdb3bc6b5d001f8909a9fca391d1d1d97ef1d79\"\u003e\u003ccode\u003e8fdb3bc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/41996f5ac73a867046d48512cab62e64fc846dad\"\u003e\u003ccode\u003e41996f5\u003c/code\u003e\u003c/a\u003e v4.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e [meta] actually ensure the readme backup isn’t published\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e [meta] fix readme capitalization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e [Tests] fix linting errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e [Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e [Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/d8d67dc8ac79285154edf7d3f57dbab593b9a146\"\u003e\u003ccode\u003ed8d67dc\u003c/code\u003e\u003c/a\u003e v4.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e [meta] remove local commit hooks\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.0...v4.0.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for form-data since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 3.5.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-formidable/formidable/releases\"\u003eformidable's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix existing test failure by \u003ca href=\"https://github.com/ryhmrt\"\u003e\u003ccode\u003e@​ryhmrt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/990\"\u003enode-formidable/formidable#990\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate Ryan Dahl x account link by \u003ca href=\"https://github.com/moetezch\"\u003e\u003ccode\u003e@​moetezch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/989\"\u003enode-formidable/formidable#989\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate failing tests\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate CI/CD workflows and actions;\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate CodeQL github action for security analysis\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate readme, links and badges\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate to use cuid2 (battle-tested \u003ccode\u003e@paralleldrive/cuid2\u003c/code\u003e package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ryhmrt\"\u003e\u003ccode\u003e@​ryhmrt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/990\"\u003enode-formidable/formidable#990\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moetezch\"\u003e\u003ccode\u003e@​moetezch\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/989\"\u003enode-formidable/formidable#989\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3\"\u003ehttps://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.2\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev3.2.5\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003e3.2.4\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003e3.1.4\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\"\u003ehttps://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\"\u003eformidable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e3.5.4\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix the \u003ccode\u003eos.machine\u003c/code\u003e breaking some dependents, fix \u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/994\"\u003e#994\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd Node 16, 18, 20, 22 to CI/CD\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.3\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esecurity report by ZAST.AI help for some vulnerabilities addressing (primarily the random names generation)\u003c/li\u003e\n\u003cli\u003eupdate failing tests\u003c/li\u003e\n\u003cli\u003eupdate CI/CD workflows and actions;\u003c/li\u003e\n\u003cli\u003eupdate CodeQL github action for security analysis\u003c/li\u003e\n\u003cli\u003eupdate readme, links and badges\u003c/li\u003e\n\u003cli\u003eupdate to use cuid2 (battle-tested \u003ccode\u003e@paralleldrive/cuid2\u003c/code\u003e package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.2\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/982\"\u003e#982\u003c/a\u003e) make it easier to import hexoid with webpack\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.1\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/945\"\u003e#945\u003c/a\u003e) multipart parser fix: flush or fail always (don't hang)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.0\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeature: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/944\"\u003e#944\u003c/a\u003e) Dual package: Can be imported as ES module and required as commonjs module\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.4.0\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeature: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/940\"\u003e#940\u003c/a\u003e) form.parse returns a promise if no callback is provided\u003c/li\u003e\n\u003cli\u003eit resolves with an array \u003ccode\u003e[fields, files]\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.3.2\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeature: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/855\"\u003e#855\u003c/a\u003e) add options.createDirsFromUploads, see README for usage\u003c/li\u003e\n\u003cli\u003eform.parse is an async function (ignore the promise)\u003c/li\u003e\n\u003cli\u003ebenchmarks: add e2e becnhmark with as many request as possible per second\n\u003cul\u003e\n\u003cli\u003enpm run to display all the commands\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003emark as latest on npm\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.2.5\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/881\"\u003e#881\u003c/a\u003e) fail earlier when maxFiles is exceeded\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.2.4\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/857\"\u003e#857\u003c/a\u003e) improve keep extension\u003c/li\u003e\n\u003cli\u003eThe code from before 3.2.4 already removed some characters from the file extension. But not always. So it was inconsistent.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 4.1.0 to 4.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/cc482e775913e6625137572a3712d2826170e53a\"\u003e\u003ccode\u003ecc482e7\u003c/code\u003e\u003c/a\u003e 4.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/50968b862e75866ef90e626572fe0b2f97b55f9f\"\u003e\u003ccode\u003e50968b8\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/d092d866031751cb27c12d93f3e2470ad74d678b\"\u003e\u003ccode\u003ed092d86\u003c/code\u003e\u003c/a\u003e lint fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879\"\u003e\u003ccode\u003e383665f\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/0d3ca7a27b03a6c974790a30a89e456007d62976\"\u003e\u003ccode\u003e0d3ca7a\u003c/code\u003e\u003c/a\u003e README.md: HTTP =\u0026gt; HTTPS (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/49baadd52af887d2991e2c39a6639baa56d6c71b\"\u003e\u003ccode\u003e49baadd\u003c/code\u003e\u003c/a\u003e doc: 'empty' style option for !!null\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/ba3460eb9d3e4478edcbc29edabe17c2157fc9ce\"\u003e\u003ccode\u003eba3460e\u003c/code\u003e\u003c/a\u003e Fix demo link (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nth-check` from 1.0.2 to 2.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fb55/nth-check/releases\"\u003enth-check's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe ESM code had some issues that are now fixed  aeeb067\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/fb55/nth-check/compare/v2.1.0...v2.1.1\"\u003ehttps://github.com/fb55/nth-check/compare/v2.1.0...v2.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003enth-check\u003c/code\u003e is now a dual CommonJS and ESM module \u003ca href=\"https://redirect.github.com/fb55/nth-check/pull/206\"\u003efb55/nth-check#206\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith the new  \u003ccode\u003esequence\u003c/code\u003e and \u003ccode\u003egenerate\u003c/code\u003e methods, it is now possible to generate a sequence of indices for a given formula \u003ca href=\"https://redirect.github.com/fb55/nth-check/pull/207\"\u003efb55/nth-check#207\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fb55/nth-check/compare/v2.0.1...v2.1.0\"\u003ehttps://github.com/fb55/nth-check/compare/v2.0.1...v2.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.0.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eReplace regex with hand-rolled parser for nth-expressions (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/9\"\u003e#9\u003c/a\u003e)  9894c1d\n\u003cul\u003e\n\u003cli\u003eEnsures parsing will always have linear time complexity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eInternal:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003echore(ci): Use GitHub Actions, Dependabot (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/10\"\u003e#10\u003c/a\u003e)  e02b4dd\u003c/li\u003e\n\u003cli\u003eBump dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/fb55/nth-check/compare/v2.0.0...v2.0.1\"\u003ehttps://github.com/fb55/nth-check/compare/v2.0.0...v2.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort module to TS, Jest, ESLint\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe main export is now a default export.\u003c/li\u003e\n\u003cli\u003eThe module now throws regular \u003ccode\u003eError\u003c/code\u003es on invalid selectors instead of \u003ccode\u003eSyntaxError\u003c/code\u003es.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/639fd2a4000b69f82350aad8c34cb43f77e483ba\"\u003e\u003ccode\u003e639fd2a\u003c/code\u003e\u003c/a\u003e 2.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/0eec65bb14c0f49deb4d5ea05108575edbe4b489\"\u003e\u003ccode\u003e0eec65b\u003c/code\u003e\u003c/a\u003e fix(test): Add \u003ccode\u003emoduleNameMapper\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/aeeb0676f6af940e8639f64e27781443694ca05e\"\u003e\u003ccode\u003eaeeb067\u003c/code\u003e\u003c/a\u003e fix: Fix ESM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/432ebc605de10e2f26d7cc2a1fc3fcb048eea6e6\"\u003e\u003ccode\u003e432ebc6\u003c/code\u003e\u003c/a\u003e 2.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/3e8cd1ea382c14a0a51aa4b67b00024f1c4acb68\"\u003e\u003ccode\u003e3e8cd1e\u003c/code\u003e\u003c/a\u003e feat: Add \u003ccode\u003egenerate\u003c/code\u003e and \u003ccode\u003esequence\u003c/code\u003e methods (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/207\"\u003e#207\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/57a5c6246d3ce56717a07ff7c86bd31d2d9ca5a0\"\u003e\u003ccode\u003e57a5c62\u003c/code\u003e\u003c/a\u003e feat: Add ESM (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/206\"\u003e#206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/1ce0c7c9281aac4869bfa26c451854d5c0557618\"\u003e\u003ccode\u003e1ce0c7c\u003c/code\u003e\u003c/a\u003e chore(deps-dev): Bump \u003ccode\u003e@​types/node\u003c/code\u003e from 17.0.34 to 17.0.35 (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/205\"\u003e#205\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/eebb040a8104ce61f24f3cbd0ec8ceffd5b82879\"\u003e\u003ccode\u003eeebb040\u003c/code\u003e\u003c/a\u003e chore(deps-dev): Bump \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 5.24.0 to 5.25.0 (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/204\"\u003e#204\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/a316aaab13f7992dbf0d8bbe778dcaa634b4b584\"\u003e\u003ccode\u003ea316aaa\u003c/code\u003e\u003c/a\u003e chore(deps-dev): Bump \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/203\"\u003e#203\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/454c0de7b9be154957247f857192810ae566d4bb\"\u003e\u003ccode\u003e454c0de\u003c/code\u003e\u003c/a\u003e chore(deps-dev): Bump \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/202\"\u003e#202\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fb55/nth-check/compare/v1.0.2...v2.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `path-to-regexp` from 0.1.10 to 8.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/pillarjs/path-to-regexp/releases\"\u003epath-to-regexp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.3.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd custom error class (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/398\"\u003e#398\u003c/a\u003e)  2a7f2a4\u003c/li\u003e\n\u003cli\u003eAllow plain objects for \u003ccode\u003eTokenData\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/391\"\u003e#391\u003c/a\u003e)  687a9bb\u003c/li\u003e\n\u003cli\u003eEscape text should escape backslash (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/390\"\u003e#390\u003c/a\u003e)  a4a8552\u003c/li\u003e\n\u003cli\u003eImproved error messages and stack size (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/363\"\u003e#363\u003c/a\u003e)  a6bdf40\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eOther\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eMinifying the parser\n\u003cul\u003e\n\u003cli\u003ePR (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/401\"\u003e#401\u003c/a\u003e)  9df2448\u003c/li\u003e\n\u003cli\u003ePR (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/395\"\u003e#395\u003c/a\u003e)  4a91505\u003c/li\u003e\n\u003cli\u003eShaving some bytes  d63f44b\u003c/li\u003e\n\u003cli\u003eRemove optional operator  973d15c\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/compare/v8.2.0...v8.3.0\"\u003ehttps://github.com/pillarjs/path-to-regexp/compare/v8.2.0...v8.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e8.2.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAllowing \u003ccode\u003epath-to-regexp\u003c/code\u003e to run on older browsers by targeting ES2015\n\u003cul\u003e\n\u003cli\u003eTarget ES2015  5969033\n\u003cul\u003e\n\u003cli\u003eAlso saved \u003cem\u003e0.22kb\u003c/em\u003e (10%!) by removing the private class field down level\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003es\u003c/code\u003e flag from regexp  51dbd45\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/compare/v8.1.0...v8.2.0\"\u003ehttps://github.com/pillarjs/path-to-regexp/compare/v8.1.0...v8.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev8.1.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eAdded\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdds \u003ccode\u003epathToRegexp\u003c/code\u003e method back for generating a regex\u003c/li\u003e\n\u003cli\u003eAdds \u003ccode\u003estringify\u003c/code\u003e method for converting \u003ccode\u003eTokenData\u003c/code\u003e into a path string\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/compare/v8.0.0...v8.1.0\"\u003ehttps://github.com/pillarjs/path-to-regexp/compare/v8.0.0...v8.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eSimpler API\u003c/h2\u003e\n\u003cp\u003eHeads up! This is a fairly large change (again) and I need to apologize in advance. If I foresaw what this version would have ended up being I would not have released version 7. A longer blog post and explanation will be incoming this week, but the pivot has been due to work on Express.js v5 and this will the finalized syntax used in Express moving forward.\u003c/p\u003e\n\u003cp\u003eEdit: The post is out - \u003ca href=\"https://blakeembrey.com/posts/2024-09-web-redos/\"\u003ehttps://blakeembrey.com/posts/2024-09-web-redos/\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAdded\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdds key names to wildcards using \u003ccode\u003e*name\u003c/code\u003e syntax, aligns with \u003ccode\u003e:\u003c/code\u003e behavior but using an asterisk instead\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRemoves group suffixes of \u003ccode\u003e?\u003c/code\u003e, \u003ccode\u003e+\u003c/code\u003e, and \u003ccode\u003e*\u003c/code\u003e - only optional exists moving forward (use wildcards for \u003ccode\u003e+\u003c/code\u003e, \u003ccode\u003e{*foo}\u003c/code\u003e for \u003ccode\u003e*\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003eParameter names follow JS identifier rules and allow unicode characters\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/pillarjs/path-to-regexp/blob/master/History.md\"\u003epath-to-regexp's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eMoved to \u003ca href=\"https://github.com/pillarjs/path-to-regexp/releases\"\u003eGitHub Releases\u003c/a\u003e\u003c/h1\u003e\n\u003ch2\u003e3.0.0 / 2019-01-13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAlways use prefix character as delimiter token, allowing any character to be a delimiter (e.g. \u003ccode\u003e/:att1-:att2-:att3-:att4-:att5\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003epartial\u003c/code\u003e support, prefer escaping the prefix delimiter explicitly (e.g. \u003ccode\u003e\\\\/(apple-)?icon-:res(\\\\d+).png\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.4.0 / 2018-08-26\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport \u003ccode\u003estart\u003c/code\u003e option to disable anchoring from beginning of the string\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.3.0 / 2018-08-20\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003edelimiter\u003c/code\u003e when processing repeated matching groups (e.g. \u003ccode\u003efoo/bar\u003c/code\u003e has no prefix, but has a delimiter)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.2.1 / 2018-04-24\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow empty string with \u003ccode\u003eend: false\u003c/code\u003e to match both relative and absolute paths\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.2.0 / 2018-03-06\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePass \u003ccode\u003etoken\u003c/code\u003e as second argument to \u003ccode\u003eencode\u003c/code\u003e option (e.g. \u003ccode\u003eencode(value, token)\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.1.0 / 2017-10-20\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle non-ending paths where the final character is a delimiter\n\u003cul\u003e\n\u003cli\u003eE.g. \u003ccode\u003e/foo/\u003c/code\u003e before required either \u003ccode\u003e/foo/\u003c/code\u003e or \u003ccode\u003e/foo//\u003c/code\u003e to match in non-ending mode\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.0 / 2017-08-23\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew option! Ability to set \u003ccode\u003eendsWith\u003c/code\u003e to match paths like \u003ccode\u003e/test?query=string\u003c/code\u003e up to the query string\u003c/li\u003e\n\u003cli\u003eNew option! Set \u003ccode\u003edelimiters\u003c/code\u003e for specific characters to be treated as parameter prefixes (e.g. \u003ccode\u003e/:test\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003eisarray\u003c/code\u003e dependency\u003c/li\u003e\n\u003cli\u003eExplicitly handle trailing delimiters instead of trimming them (e.g. \u003ccode\u003e/test/\u003c/code\u003e is now treated as \u003ccode\u003e/test/\u003c/code\u003e instead of \u003ccode\u003e/test\u003c/code\u003e when matching)\u003c/li\u003e\n\u003cli\u003eRemove overloaded \u003ccode\u003ekeys\u003c/code\u003e argument that accepted \u003ccode\u003eoptions\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003ekeys\u003c/code\u003e list attached to the \u003ccode\u003eRegExp\u003c/code\u003e output\u003c/li\u003e\n\u003cli\u003eRemove asterisk functionality (it's a real pain to properly encode)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003etokensToFunction\u003c/code\u003e (e.g. \u003ccode\u003ecompile\u003c/code\u003e) to accept an \u003ccode\u003eencode\u003c/code\u003e function for pretty encoding (e.g. pass your own implementation)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.7.0 / 2016-11-08\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow a \u003ccode\u003edelimiter\u003c/code\u003e option to be passed in with \u003ccode\u003etokensToRegExp\u003c/code\u003e which will be used for \u0026quot;non-ending\u0026quot; token match situations\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.6.0 / 2016-10-03\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePopulate \u003ccode\u003eRegExp.keys\u003c/code\u003e when using the \u003ccode\u003etokensToRegExp\u003c/code\u003e method (making it consistent with the main export)\u003c/li\u003e\n\u003cli\u003eAllow a \u003ccode\u003edelimiter\u003c/code\u003e option to be passed in with \u003ccode\u003eparse\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eUpdated TypeScript definition with \u003ccode\u003eKeys\u003c/code\u003e and \u003ccode\u003eOptions\u003c/code\u003e updated\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.5.3 / 2016-06-15\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/c4f5b3fc10782a5de2bee55c3e40e5af890c9cad\"\u003e\u003ccode\u003ec4f5b3f\u003c/code\u003e\u003c/a\u003e 8.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/6587c812746cba94855867612f3a719bb25f794e\"\u003e\u003ccode\u003e6587c81\u003c/code\u003e\u003c/a\u003e Move parameter name errors up in docs (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/402\"\u003e#402\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/9df2448fdfca9d2957cf47a1777b5deda9be18cf\"\u003e\u003ccode\u003e9df2448\u003c/code\u003e\u003c/a\u003e Remove more bytes from parser (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/401\"\u003e#401\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/012a54a83c9e7fe77d1ee436c67048bca0512aca\"\u003e\u003ccode\u003e012a54a\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/403\"\u003e#403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/9385f7df7406b4607c3d18dfb276d5371f885418\"\u003e\u003ccode\u003e9385f7d\u003c/code\u003e\u003c/a\u003e Remove engines from package (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/399\"\u003e#399\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/2a7f2a4e9ba42eee41aa9d7a1a69eddb43b79a61\"\u003e\u003ccode\u003e2a7f2a4\u003c/code\u003e\u003c/a\u003e Add custom error class (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/398\"\u003e#398\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/265a2a7a26916a18fc6d1c5936c878a32a0fedb7\"\u003e\u003ccode\u003e265a2a7\u003c/code\u003e\u003c/a\u003e 100% test coverage (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/396\"\u003e#396\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/4a915059a843dfdd122a0c4936837c7fdda2d4ee\"\u003e\u003ccode\u003e4a91505\u003c/code\u003e\u003c/a\u003e Reduce bytes in parse function (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/395\"\u003e#395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/687a9bbc735245b2688c17db7e9fe86013ea0c77\"\u003e\u003ccode\u003e687a9bb\u003c/code\u003e\u003c/a\u003e Allow plain objects for \u003ccode\u003eTokenData\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/391\"\u003e#391\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/a4a8552c9fb4449c470f...\n\n_Description has been truncated_","html_url":"https://github.com/qenex-ai/iframely-3a260097/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/qenex-ai%2Fiframely-3a260097/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"},{"uuid":"4009594597","node_id":"PR_kwDOORAVDc7HPved","number":20,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 17 directories with 15 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-05T05:20:16.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-02T06:41:31.000Z","updated_at":"2026-03-05T05:20:17.000Z","time_to_close":254325,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":15,"packages":[{"name":"formidable","old_version":"2.1.1","new_version":"3.5.4","repository_url":"https://github.com/node-formidable/formidable"},{"name":"axios","old_version":"0.26.1","new_version":"0.30.3","repository_url":"https://github.com/axios/axios"},{"name":"tar","old_version":"6.1.11","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"semver","old_version":"5.7.1","new_version":"5.7.2","repository_url":"https://github.com/npm/node-semver"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 7 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.1` | `3.5.4` |\n| [axios](https://github.com/axios/axios) | `0.26.1` | `0.30.3` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.11` | `7.5.8` |\n| [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n\nBumps the npm_and_yarn group with 2 updates in the /examples/07-nlpjs-on-aws-lambda/nlpjs-lambda-with-DynamoDB/nlpjs directory: [lodash](https://github.com/lodash/lodash) and [aws-sdk](https://github.com/aws/aws-sdk-js).\nBumps the npm_and_yarn group with 2 updates in the /examples/07-nlpjs-on-aws-lambda/nlpjs-lambda/hello-world directory: [axios](https://github.com/axios/axios) and [js-yaml](https://github.com/nodeca/js-yaml).\nBumps the npm_and_yarn group with 1 update in the /examples/07-nlpjs-on-aws-lambda/nlpjs-lambda/nlpjs directory: [lodash](https://github.com/lodash/lodash).\nBumps the npm_and_yarn group with 3 updates in the /packages/api-auth-jwt directory: [semver](https://github.com/npm/node-semver), [lodash](https://github.com/lodash/lodash) and [jws](https://github.com/brianloveswords/node-jws).\nBumps the npm_and_yarn group with 4 updates in the /packages/builtin-compromise directory: [semver](https://github.com/npm/node-semver), [js-yaml](https://github.com/nodeca/js-yaml), [brace-expansion](https://github.com/juliangruber/brace-expansion) and [minimatch](https://github.com/isaacs/minimatch).\nBumps the npm_and_yarn group with 3 updates in the /packages/dialogflow-connector directory: [qs](https://github.com/ljharb/qs), [jws](https://github.com/brianloveswords/node-jws) and [node-forge](https://github.com/digitalbazaar/forge).\nBumps the npm_and_yarn group with 1 update in the /packages/directline-connector directory: [formidable](https://github.com/node-formidable/formidable).\nBumps the npm_and_yarn group with 2 updates in the /packages/express-api-server directory: [semver](https://github.com/npm/node-semver) and [form-data](https://github.com/form-data/form-data).\nBumps the npm_and_yarn group with 1 update in the /packages/express-api-serverless directory: [qs](https://github.com/ljharb/qs).\nBumps the npm_and_yarn group with 3 updates in the /packages/fb-connector directory: [axios](https://github.com/axios/axios), [qs](https://github.com/ljharb/qs) and [lodash](https://github.com/lodash/lodash).\nBumps the npm_and_yarn group with 2 updates in the /packages/fullbot directory: [brace-expansion](https://github.com/juliangruber/brace-expansion) and [minimatch](https://github.com/isaacs/minimatch).\nBumps the npm_and_yarn group with 1 update in the /packages/lang-ja directory: [lodash](https://github.com/lodash/lodash).\nBumps the npm_and_yarn group with 1 update in the /packages/msbf-connector directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 4 updates in the /packages/open-question directory: [semver](https://github.com/npm/node-semver), [brace-expansion](https://github.com/juliangruber/brace-expansion), [minimatch](https://github.com/isaacs/minimatch) and [form-data](https://github.com/form-data/form-data).\nBumps the npm_and_yarn group with 1 update in the /packages/request-rn directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 4 updates in the /packages/utils directory: [tar](https://github.com/isaacs/node-tar), [brace-expansion](https://github.com/juliangruber/brace-expansion), [minimatch](https://github.com/isaacs/minimatch) and [tmp](https://github.com/raszi/node-tmp).\n\nUpdates `formidable` from 2.1.1 to 3.5.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-formidable/formidable/releases\"\u003eformidable's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix existing test failure by \u003ca href=\"https://github.com/ryhmrt\"\u003e\u003ccode\u003e@​ryhmrt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/990\"\u003enode-formidable/formidable#990\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate Ryan Dahl x account link by \u003ca href=\"https://github.com/moetezch\"\u003e\u003ccode\u003e@​moetezch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/989\"\u003enode-formidable/formidable#989\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate failing tests\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate CI/CD workflows and actions;\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate CodeQL github action for security analysis\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate readme, links and badges\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate to use cuid2 (battle-tested \u003ccode\u003e@paralleldrive/cuid2\u003c/code\u003e package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ryhmrt\"\u003e\u003ccode\u003e@​ryhmrt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/990\"\u003enode-formidable/formidable#990\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moetezch\"\u003e\u003ccode\u003e@​moetezch\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/989\"\u003enode-formidable/formidable#989\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3\"\u003ehttps://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.2\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev3.2.5\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003e3.2.4\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003e3.1.4\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\"\u003ehttps://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\"\u003eformidable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e3.5.4\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix the \u003ccode\u003eos.machine\u003c/code\u003e breaking some dependents, fix \u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/994\"\u003e#994\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd Node 16, 18, 20, 22 to CI/CD\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.3\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esecurity report by ZAST.AI help for some vulnerabilities addressing (primarily the random names generation)\u003c/li\u003e\n\u003cli\u003eupdate failing tests\u003c/li\u003e\n\u003cli\u003eupdate CI/CD workflows and actions;\u003c/li\u003e\n\u003cli\u003eupdate CodeQL github action for security analysis\u003c/li\u003e\n\u003cli\u003eupdate readme, links and badges\u003c/li\u003e\n\u003cli\u003eupdate to use cuid2 (battle-tested \u003ccode\u003e@paralleldrive/cuid2\u003c/code\u003e package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.2\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/982\"\u003e#982\u003c/a\u003e) make it easier to import hexoid with webpack\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.1\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/945\"\u003e#945\u003c/a\u003e) multipart parser fix: flush or fail always (don't hang)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.0\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeature: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/944\"\u003e#944\u003c/a\u003e) Dual package: Can be imported as ES module and required as commonjs module\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.4.0\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeature: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/940\"\u003e#940\u003c/a\u003e) form.parse returns a promise if no callback is provided\u003c/li\u003e\n\u003cli\u003eit resolves with an array \u003ccode\u003e[fields, files]\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.3.2\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeature: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/855\"\u003e#855\u003c/a\u003e) add options.createDirsFromUploads, see README for usage\u003c/li\u003e\n\u003cli\u003eform.parse is an async function (ignore the promise)\u003c/li\u003e\n\u003cli\u003ebenchmarks: add e2e becnhmark with as many request as possible per second\n\u003cul\u003e\n\u003cli\u003enpm run to display all the commands\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003emark as latest on npm\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.2.5\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/881\"\u003e#881\u003c/a\u003e) fail earlier when maxFiles is exceeded\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.2.4\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/857\"\u003e#857\u003c/a\u003e) improve keep extension\u003c/li\u003e\n\u003cli\u003eThe code from before 3.2.4 already removed some characters from the file extension. But not always. So it was inconsistent.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 0.26.1 to 0.30.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease notes - v0.30.3\u003c/h2\u003e\n\u003cp\u003eThis is a critical security maintenance release for the v0.x branch. It addresses a high-priority vulnerability involving prototype pollution that could lead to a Denial of Service (DoS).\u003c/p\u003e\n\u003cp\u003eRecommendation: All users currently on the 0.x release line should upgrade to this version immediately to ensure environment stability.\u003c/p\u003e\n\u003ch2\u003e🛡️ Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBackport: Fix DoS via \u003cstrong\u003eproto\u003c/strong\u003e key in merge config\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003ePatched a vulnerability where specifically crafted configuration objects using the \u003cstrong\u003eproto\u003c/strong\u003e key could cause a Denial of Service during the merge process. - \u003cem\u003eby \u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e in [PR \u003ca href=\"https://redirect.github.com/axios/axios/issues/7388\"\u003e#7388\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/axios/axios/pull/7388\"\u003eaxios/axios#7388\u003c/a\u003e)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚙️ Maintenance \u0026amp; CI\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Infrastructure Update\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated Continuous Integration workflows for the v0.x branch to maintain long-term support and build reliability. - \u003cem\u003eby \u003ca href=\"https://github.com/jasonsaayman\"\u003e\u003ccode\u003e@​jasonsaayman\u003c/code\u003e\u003c/a\u003e in [PR \u003ca href=\"https://redirect.github.com/axios/axios/issues/7407\"\u003e#7407\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/axios/axios/pull/7407\"\u003eaxios/axios#7407\u003c/a\u003e)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cp\u003eConfiguration Merging Behavior:\u003c/p\u003e\n\u003cp\u003eAs part of the security fix, Axios now restricts the merging of the \u003cstrong\u003eproto\u003c/strong\u003e key within configuration objects. If your codebase relies on unconventional deep-merging patterns that target the object prototype via Axios config, those operations will now be blocked. This is a necessary change to prevent prototype pollution.\u003c/p\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.2...v0.30.3\"\u003ev0.30.2...v0.30.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.30.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u003ccode\u003emaxContentLength\u003c/code\u003e vulnerability fix to v0.x by \u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/7034\"\u003eaxios/axios#7034\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/axios/axios/pull/7034\"\u003eaxios/axios#7034\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.1...v0.30.2\"\u003ehttps://github.com/axios/axios/compare/v0.30.1...v0.30.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.30.1\u003c/h2\u003e\n\u003ch2\u003eRelease notes:\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump form-data from 4.0.0 to 4.0.4 for v0.x by \u003ca href=\"https://github.com/wolandec\"\u003e\u003ccode\u003e@​wolandec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6978\"\u003eaxios/axios#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wolandec\"\u003e\u003ccode\u003e@​wolandec\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6978\"\u003eaxios/axios#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.0...v0.30.1\"\u003ehttps://github.com/axios/axios/compare/v0.30.0...v0.30.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.30.0\u003c/h2\u003e\n\u003ch2\u003eRelease notes:\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: modify log while request is aborted by \u003ca href=\"https://github.com/mori5321\"\u003e\u003ccode\u003e@​mori5321\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/4917\"\u003eaxios/axios#4917\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update CHANGELOG.md for v0.x by \u003ca href=\"https://github.com/TehZarathustra\"\u003e\u003ccode\u003e@​TehZarathustra\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6271\"\u003eaxios/axios#6271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: modify upgrade guide for 0.28.1's breaking change by \u003ca href=\"https://github.com/nafeger\"\u003e\u003ccode\u003e@​nafeger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6787\"\u003eaxios/axios#6787\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f53bcf6c3747652c9d3811dc0bbcd3674e21567a\"\u003e\u003ccode\u003ef53bcf6\u003c/code\u003e\u003c/a\u003e chore: release 0.30.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3ddccd3bf478c8aab863f2fdd4a52461849eab45\"\u003e\u003ccode\u003e3ddccd3\u003c/code\u003e\u003c/a\u003e chore: remove publish as this wont work\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9ef39d07245286df678c1a16e7b5769610ba8326\"\u003e\u003ccode\u003e9ef39d0\u003c/code\u003e\u003c/a\u003e chore: try with npm token\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4775de601df704d8d4e7336a57b08a2e21de8ff4\"\u003e\u003ccode\u003e4775de6\u003c/code\u003e\u003c/a\u003e chore: fix version scheme\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f96f26b2014404534424e765b83a1dbbd8cb091f\"\u003e\u003ccode\u003ef96f26b\u003c/code\u003e\u003c/a\u003e chore: fix issues with using replace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ead45c20b05ab32c26cb63d0f7a20e8b123d9f68\"\u003e\u003ccode\u003eead45c2\u003c/code\u003e\u003c/a\u003e chore: update the publish workflow to run on tag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8119265e6ce71898d19448d30356789cccc2de56\"\u003e\u003ccode\u003e8119265\u003c/code\u003e\u003c/a\u003e chore: tag version as legacy on v0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/995498519881c23ba97b42dda16bcadc0e4791a7\"\u003e\u003ccode\u003e9954985\u003c/code\u003e\u003c/a\u003e chore: dispatch for first time\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3f8b70fdfc7903aa137ea4f6539cd00f5df97afb\"\u003e\u003ccode\u003e3f8b70f\u003c/code\u003e\u003c/a\u003e chore: final rename\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/c66558430e71cf0c113a2969355cde25cb159fff\"\u003e\u003ccode\u003ec665584\u003c/code\u003e\u003c/a\u003e chore: revert naming\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v0.26.1...v0.30.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 6.1.11 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/releases\"\u003etar's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.13\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-tar/compare/v6.1.12...v6.1.13\"\u003e6.1.13\u003c/a\u003e (2022-12-07)\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-tar/commit/cc4e0ddfe523a0bce383846a67442c637a65d486\"\u003e\u003ccode\u003ecc4e0dd\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-tar/pull/343\"\u003e#343\u003c/a\u003e bump minipass from 3.3.6 to 4.0.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.12\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-tar/compare/v6.1.11...v6.1.12\"\u003e6.1.12\u003c/a\u003e (2022-10-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-tar/commit/57493ee66ece50d62114e02914282fc37be3a91a\"\u003e\u003ccode\u003e57493ee\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-tar/pull/332\"\u003e#332\u003c/a\u003e ensuring close event is emited after stream has ended (\u003ca href=\"https://github.com/webark\"\u003e\u003ccode\u003e@​webark\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-tar/commit/b003c64f624332e24e19b30dc011069bb6708680\"\u003e\u003ccode\u003eb003c64\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-tar/pull/314\"\u003e#314\u003c/a\u003e replace deprecated String.prototype.substr() (\u003ca href=\"https://redirect.github.com/isaacs/node-tar/issues/314\"\u003e#314\u003c/a\u003e) (\u003ca href=\"https://github.com/CommanderRoot\"\u003e\u003ccode\u003e@​CommanderRoot\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukekarrys\"\u003e\u003ccode\u003e@​lukekarrys\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-tar/commit/f12992932f171ea248b27fad95e7d489a56d31ed\"\u003e\u003ccode\u003ef129929\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-tar/pull/313\"\u003e#313\u003c/a\u003e remove dead link to benchmarks (\u003ca href=\"https://redirect.github.com/isaacs/node-tar/issues/313\"\u003e#313\u003c/a\u003e) (\u003ca href=\"https://github.com/yetzt\"\u003e\u003ccode\u003e@​yetzt\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-tar/commit/c1faa9f44001dfb0bc7638b2850eb6058bd56a4a\"\u003e\u003ccode\u003ec1faa9f\u003c/code\u003e\u003c/a\u003e add examples/explanation of using tar.t (\u003ca href=\"https://github.com/isaacs\"\u003e\u003ccode\u003e@​isaacs\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v6.1.11...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `semver` from 5.7.1 to 5.7.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/npm/node-semver/releases\"\u003esemver's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.7.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2\"\u003e5.7.2\u003c/a\u003e (2023-07-10)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/2f8fd41487acf380194579ecb6f8b1bbfe116be0\"\u003e\u003ccode\u003e2f8fd41\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/585\"\u003e#585\u003c/a\u003e better handling of whitespace (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/585\"\u003e#585\u003c/a\u003e) (\u003ca href=\"https://github.com/joaomoreno\"\u003e\u003ccode\u003e@​joaomoreno\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukekarrys\"\u003e\u003ccode\u003e@​lukekarrys\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md\"\u003esemver's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2\"\u003e5.7.2\u003c/a\u003e (2023-07-10)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/2f8fd41487acf380194579ecb6f8b1bbfe116be0\"\u003e\u003ccode\u003e2f8fd41\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/585\"\u003e#585\u003c/a\u003e better handling of whitespace (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/585\"\u003e#585\u003c/a\u003e) (\u003ca href=\"https://github.com/joaomoreno\"\u003e\u003ccode\u003e@​joaomoreno\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukekarrys\"\u003e\u003ccode\u003e@​lukekarrys\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eminVersion\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove boolean \u003ccode\u003eloose\u003c/code\u003e param to an options object, with\nbackwards-compatibility protection.\u003c/li\u003e\n\u003cli\u003eAdd ability to opt out of special prerelease version handling with\nthe \u003ccode\u003eincludePrerelease\u003c/code\u003e option flag.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd version coercion capabilities\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd intersection checking\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eminSatisfying\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eprerelease(v)\u003c/code\u003e that returns prerelease components\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Backus-Naur for ranges\u003c/li\u003e\n\u003cli\u003eRemove excessively cute inspection methods\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove AMD/Browserified build artifacts\u003c/li\u003e\n\u003cli\u003eFix ltr and gtr when using the \u003ccode\u003e*\u003c/code\u003e range\u003c/li\u003e\n\u003cli\u003eFix for range \u003ccode\u003e*\u003c/code\u003e with a prerelease identifier\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/f8cc313550691a50d9662d8c94f0c033717efd7d\"\u003e\u003ccode\u003ef8cc313\u003c/code\u003e\u003c/a\u003e chore: release 5.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/2f8fd41487acf380194579ecb6f8b1bbfe116be0\"\u003e\u003ccode\u003e2f8fd41\u003c/code\u003e\u003c/a\u003e fix: better handling of whitespace (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/585\"\u003e#585\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/deb5ad51bf58868fa243c1683775305fe9e0e365\"\u003e\u003ccode\u003edeb5ad5\u003c/code\u003e\u003c/a\u003e chore: \u003ccode\u003e@​npmcli/template-oss\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.16.0\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~lukekarrys\"\u003elukekarrys\u003c/a\u003e, a new releaser for semver since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `aws-sdk` from 2.814.0 to 2.1693.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js/releases\"\u003eaws-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.1693.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1692.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1691.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1690.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1689.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1688.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1687.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1686.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1685.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1684.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1683.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1682.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1681.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1680.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1679.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1678.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1677.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/9d3c66eca8c4416a9d347d0703f27b65775d65ef\"\u003e\u003ccode\u003e9d3c66e\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1693.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c039567cee58b50a44f53f30318fa21f36c42ecc\"\u003e\u003ccode\u003ec039567\u003c/code\u003e\u003c/a\u003e test(client-elastictranscoder): remove feature test (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4711\"\u003e#4711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/f5b1a6f0aebb477204d979091d654649f29ad9ce\"\u003e\u003ccode\u003ef5b1a6f\u003c/code\u003e\u003c/a\u003e docs: end-of-support (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4706\"\u003e#4706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/657d6feb00447c8be1d65158a0ecc0585b70ed60\"\u003e\u003ccode\u003e657d6fe\u003c/code\u003e\u003c/a\u003e chore: use ssh private key for git sync (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4705\"\u003e#4705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c12585baeb9197158cd50975af66856617732aea\"\u003e\u003ccode\u003ec12585b\u003c/code\u003e\u003c/a\u003e chore: remove regression label management (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4699\"\u003e#4699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/966fa6c316dbb11ca9277564ff7120e6b16467f4\"\u003e\u003ccode\u003e966fa6c\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1692.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/5d0e38adbbc1a3fd6e6bf7c48cd7e209e9eb0b5f\"\u003e\u003ccode\u003e5d0e38a\u003c/code\u003e\u003c/a\u003e Delete EC2 launch configuration e2e tests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4685\"\u003e#4685\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/b9ce3461a495dcf4f4a0be133e103d98130847a6\"\u003e\u003ccode\u003eb9ce346\u003c/code\u003e\u003c/a\u003e chore: fix issue config (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4683\"\u003e#4683\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c06668172b233e0b2ded1afc48f0a11f6b79735c\"\u003e\u003ccode\u003ec066681\u003c/code\u003e\u003c/a\u003e Update issue template config and disable docs requests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4682\"\u003e#4682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/163a7cfc86308e0b54245c04fb7b317bcd3893b0\"\u003e\u003ccode\u003e163a7cf\u003c/code\u003e\u003c/a\u003e Modified bug issue template to add checkbox to report potential regression. (...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-js/compare/v2.814.0...v2.1693.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 0.21.2 to 0.30.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease notes - v0.30.3\u003c/h2\u003e\n\u003cp\u003eThis is a critical security maintenance release for the v0.x branch. It addresses a high-priority vulnerability involving prototype pollution that could lead to a Denial of Service (DoS).\u003c/p\u003e\n\u003cp\u003eRecommendation: All users currently on the 0.x release line should upgrade to this version immediately to ensure environment stability.\u003c/p\u003e\n\u003ch2\u003e🛡️ Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBackport: Fix DoS via \u003cstrong\u003eproto\u003c/strong\u003e key in merge config\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003ePatched a vulnerability where specifically crafted configuration objects using the \u003cstrong\u003eproto\u003c/strong\u003e key could cause a Denial of Service during the merge process. - \u003cem\u003eby \u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e in [PR \u003ca href=\"https://redirect.github.com/axios/axios/issues/7388\"\u003e#7388\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/axios/axios/pull/7388\"\u003eaxios/axios#7388\u003c/a\u003e)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚙️ Maintenance \u0026amp; CI\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Infrastructure Update\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated Continuous Integration workflows for the v0.x branch to maintain long-term support and build reliability. - \u003cem\u003eby \u003ca href=\"https://github.com/jasonsaayman\"\u003e\u003ccode\u003e@​jasonsaayman\u003c/code\u003e\u003c/a\u003e in [PR \u003ca href=\"https://redirect.github.com/axios/axios/issues/7407\"\u003e#7407\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/axios/axios/pull/7407\"\u003eaxios/axios#7407\u003c/a\u003e)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cp\u003eConfiguration Merging Behavior:\u003c/p\u003e\n\u003cp\u003eAs part of the security fix, Axios now restricts the merging of the \u003cstrong\u003eproto\u003c/strong\u003e key within configuration objects. If your codebase relies on unconventional deep-merging patterns that target the object prototype via Axios config, those operations will now be blocked. This is a necessary change to prevent prototype pollution.\u003c/p\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.2...v0.30.3\"\u003ev0.30.2...v0.30.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.30.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u003ccode\u003emaxContentLength\u003c/code\u003e vulnerability fix to v0.x by \u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/7034\"\u003eaxios/axios#7034\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/axios/axios/pull/7034\"\u003eaxios/axios#7034\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.1...v0.30.2\"\u003ehttps://github.com/axios/axios/compare/v0.30.1...v0.30.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.30.1\u003c/h2\u003e\n\u003ch2\u003eRelease notes:\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump form-data from 4.0.0 to 4.0.4 for v0.x by \u003ca href=\"https://github.com/wolandec\"\u003e\u003ccode\u003e@​wolandec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6978\"\u003eaxios/axios#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wolandec\"\u003e\u003ccode\u003e@​wolandec\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6978\"\u003eaxios/axios#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.0...v0.30.1\"\u003ehttps://github.com/axios/axios/compare/v0.30.0...v0.30.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.30.0\u003c/h2\u003e\n\u003ch2\u003eRelease notes:\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: modify log while request is aborted by \u003ca href=\"https://github.com/mori5321\"\u003e\u003ccode\u003e@​mori5321\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/4917\"\u003eaxios/axios#4917\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update CHANGELOG.md for v0.x by \u003ca href=\"https://github.com/TehZarathustra\"\u003e\u003ccode\u003e@​TehZarathustra\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6271\"\u003eaxios/axios#6271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: modify upgrade guide for 0.28.1's breaking change by \u003ca href=\"https://github.com/nafeger\"\u003e\u003ccode\u003e@​nafeger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6787\"\u003eaxios/axios#6787\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f53bcf6c3747652c9d3811dc0bbcd3674e21567a\"\u003e\u003ccode\u003ef53bcf6\u003c/code\u003e\u003c/a\u003e chore: release 0.30.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3ddccd3bf478c8aab863f2fdd4a52461849eab45\"\u003e\u003ccode\u003e3ddccd3\u003c/code\u003e\u003c/a\u003e chore: remove publish as this wont work\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9ef39d07245286df678c1a16e7b5769610ba8326\"\u003e\u003ccode\u003e9ef39d0\u003c/code\u003e\u003c/a\u003e chore: try with npm token\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4775de601df704d8d4e7336a57b08a2e21de8ff4\"\u003e\u003ccode\u003e4775de6\u003c/code\u003e\u003c/a\u003e chore: fix version scheme\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f96f26b2014404534424e765b83a1dbbd8cb091f\"\u003e\u003ccode\u003ef96f26b\u003c/code\u003e\u003c/a\u003e chore: fix issues with using replace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ead45c20b05ab32c26cb63d0f7a20e8b123d9f68\"\u003e\u003ccode\u003eead45c2\u003c/code\u003e\u003c/a\u003e chore: update the publish workflow to run on tag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8119265e6ce71898d19448d30356789cccc2de56\"\u003e\u003ccode\u003e8119265\u003c/code\u003e\u003c/a\u003e chore: tag version as legacy on v0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/995498519881c23ba97b42dda16bcadc0e4791a7\"\u003e\u003ccode\u003e9954985\u003c/code\u003e\u003c/a\u003e chore: dispatch for first time\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3f8b70fdfc7903aa137ea4f6539cd00f5df97afb\"\u003e\u003ccode\u003e3f8b70f\u003c/code\u003e\u003c/a\u003e chore: final rename\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/c66558430e71cf0c113a2969355cde25cb159fff\"\u003e\u003ccode\u003ec665584\u003c/code\u003e\u003c/a\u003e chore: revert naming\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v0.26.1...v0.30.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 4.1.0 to 4.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 2.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 5.1.9\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `serialize-javascript` from 6.0.0 to 6.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yahoo/serialize-javascript/releases\"\u003eserialize-javascript's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: serialize URL string contents to prevent XSS (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/173\"\u003e#173\u003c/a\u003e)  f27d65d\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​babel/traverse\u003c/code\u003e from 7.10.1 to 7.23.7 (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/171\"\u003e#171\u003c/a\u003e)  02499c0\u003c/li\u003e\n\u003cli\u003edocs: update readme with URL support (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/146\"\u003e#146\u003c/a\u003e)  0d88527\u003c/li\u003e\n\u003cli\u003echore: update node version and lock file  e2a3a91\u003c/li\u003e\n\u003cli\u003efix typo (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/164\"\u003e#164\u003c/a\u003e)  5a1fa64\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/compare/v6.0.1...v6.0.2\"\u003ehttps://github.com/yahoo/serialize-javascript/compare/v6.0.1...v6.0.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump mocha from 9.0.1 to 9.0.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/126\"\u003eyahoo/serialize-javascript#126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.0.2 to 9.0.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/127\"\u003eyahoo/serialize-javascript#127\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump path-parse from 1.0.6 to 1.0.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/129\"\u003eyahoo/serialize-javascript#129\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.0.3 to 9.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/130\"\u003eyahoo/serialize-javascript#130\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.1.0 to 9.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/131\"\u003eyahoo/serialize-javascript#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.1.1 to 9.1.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/132\"\u003eyahoo/serialize-javascript#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.1.2 to 9.1.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/133\"\u003eyahoo/serialize-javascript#133\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.1.3 to 9.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/137\"\u003eyahoo/serialize-javascript#137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.1.4 to 9.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/138\"\u003eyahoo/serialize-javascript#138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump chai from 4.3.4 to 4.3.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/140\"\u003eyahoo/serialize-javascript#140\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump ansi-regex from 5.0.0 to 5.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/141\"\u003eyahoo/serialize-javascript#141\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.2.0 to 9.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/143\"\u003eyahoo/serialize-javascript#143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimist from 1.2.5 to 1.2.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/144\"\u003eyahoo/serialize-javascript#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.2.2 to 10.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/145\"\u003eyahoo/serialize-javascript#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 10.0.0 to 10.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/149\"\u003eyahoo/serialize-javascript#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump chai from 4.3.6 to 4.3.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/150\"\u003eyahoo/serialize-javascript#150\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: test.yml - actions bump by \u003ca href=\"https://github.com/piwysocki\"\u003e\u003ccode\u003e@​piwysocki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/151\"\u003eyahoo/serialize-javascript#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.0.4 to 3.1.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/152\"\u003eyahoo/serialize-javascript#152\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 10.1.0 to 10.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/153\"\u003eyahoo/serialize-javascript#153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump json5 from 2.1.3 to 2.2.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/155\"\u003eyahoo/serialize-javascript#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix serialization issue for 0n. by \u003ca href=\"https://github.com/momocow\"\u003e\u003ccode\u003e@​momocow\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/156\"\u003eyahoo/serialize-javascript#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v6.0.1 by \u003ca href=\"https://github.com/okuryu\"\u003e\u003ccode\u003e@​okuryu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/157\"\u003eyahoo/serialize-javascript#157\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/piwysocki\"\u003e\u003ccode\u003e@​piwysocki\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/151\"\u003eyahoo/serialize-javascript#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/momocow\"\u003e\u003ccode\u003e@​momocow\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/156\"\u003eyahoo/serialize-javascript#156\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/yahoo/serialize-javascript/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/yahoo/serialize-javascript/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/b71ec23841d7cf30847d3071d9da38ee0b397fc8\"\u003e\u003ccode\u003eb71ec23\u003c/code\u003e\u003c/a\u003e 6.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e\"\u003e\u003ccode\u003ef27d65d\u003c/code\u003e\u003c/a\u003e fix: serialize URL string contents to prevent XSS (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/173\"\u003e#173\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/02499c0adfb40f48e1ebdcbe6fffc83b162b95e9\"\u003e\u003ccode\u003e02499c0\u003c/code\u003e\u003c/a\u003e Bump \u003ccode\u003e@​babel/traverse\u003c/code\u003e from 7.10.1 to 7.23.7 (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/171\"\u003e#171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/0d885272f45069b1207189ae18a6f2726b4abaa9\"\u003e\u003ccode\u003e0d88527\u003c/code\u003e\u003c/a\u003e docs: update readme with URL support (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/146\"\u003e#146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/e2a3a9173e6770ee92e02d95d6a8e7958dfb419d\"\u003e\u003ccode\u003ee2a3a91\u003c/code\u003e\u003c/a\u003e chore: update node version and lock file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/5a1fa646d9cbbe0b4f13c07f01c249fb2493e20f\"\u003e\u003ccode\u003e5a1fa64\u003c/code\u003e\u003c/a\u003e fix typo (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/164\"\u003e#164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/7139f9251b4cad52136513cf3360869e1e645d6c\"\u003e\u003ccode\u003e7139f92\u003c/code\u003e\u003c/a\u003e Release v6.0.1 (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/157\"\u003e#157\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/7e23ae89e4b65ebf8836fcbaab637d49fb32ecb2\"\u003e\u003ccode\u003e7e23ae8\u003c/code\u003e\u003c/a\u003e Fix serialization issue for 0n. (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/156\"\u003e#156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/343abd98ff0a3f88f61fca35100762fdd6cb1963\"\u003e\u003ccode\u003e343abd9\u003c/code\u003e\u003c/a\u003e Bump json5 from 2.1.3 to 2.2.3 (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/155\"\u003e#155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/38d0e70e2d82662b2ec4fa2f7f3e1289db745db1\"\u003e\u003ccode\u003e38d0e70\u003c/code\u003e\u003c/a\u003e Bump mocha from 10.1.0 to 10.2.0 (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/153\"\u003e#153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/yahoo/serialize-javascript/compare/v6.0.0...v6.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/co...\n\n_Description has been truncated_\n\u003c!-- ELLIPSIS_HIDDEN --\u003e\n\n----\n\n\u003e [!IMPORTANT]\n\u003e Bumps npm dependencies across multiple directories, including `formidable`, `axios`, `aws-sdk`, and `tar`, to their latest versions.\n\u003e \n\u003e   - **Dependency Updates**:\n\u003e     - Updates `formidable` to 3.5.4 in `directline-connector`.\n\u003e     - Updates `axios` to 0.30.3 in `hello-world` and `request-rn`.\n\u003e     - Updates `aws-sdk` to 2.1693.0 in `nlpjs-lambda-with-DynamoDB`.\n\u003e     - Updates `tar` to 7.5.8 in `utils`.\n\u003e   - **Dev Dependency Updates**:\n\u003e     - Updates `mocha` to 10.8.2 in `hello-world`.\n\u003e \n\u003e \u003csup\u003eThis description was created by \u003c/sup\u003e[\u003cimg alt=\"Ellipsis\" src=\"https://img.shields.io/badge/Ellipsis-blue?color=175173\"\u003e](https://www.ellipsis.dev?ref=JohnDaWalka%2Fnlp.js\u0026utm_source=github\u0026utm_medium=referral)\u003csup\u003e for 9614d958012ca8bd2b0ee9d8f116155b06baa15a. You can [customize](https://app.ellipsis.dev/JohnDaWalka/settings/summaries) this summary. It will automatically update as commits are pushed.\u003c/sup\u003e\n\n\u003c!-- ELLIPSIS_HIDDEN --\u003e","html_url":"https://github.com/JohnDaWalka/nlp.js/pull/20","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/JohnDaWalka%2Fnlp.js/issues/20","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/20/packages"},{"uuid":"4002187563","node_id":"PR_kwDOMooqHM7G4pUJ","number":10,"state":"open","title":"Bump the npm_and_yarn group across 13 directories with 20 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-27T17:56:51.000Z","updated_at":"2026-02-27T17:56:55.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":20,"packages":[{"name":"aws-sdk","old_version":"2.1448.0","new_version":"2.1693.0","repository_url":"https://github.com/aws/aws-sdk-js"},{"name":"axios","old_version":"1.5.0","new_version":"1.13.5","repository_url":"https://github.com/axios/axios"},{"name":"bn.js","old_version":"5.2.1","new_version":"5.2.3","repository_url":"https://github.com/indutny/bn.js"},{"name":"fastify","old_version":"4.22.0","new_version":"5.7.3","repository_url":"https://github.com/fastify/fastify"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"next","old_version":"13.4.2","new_version":"15.5.10","repository_url":"https://github.com/vercel/next.js"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"base-x","old_version":"3.0.9","new_version":"3.0.11","repository_url":"https://github.com/cryptocoinjs/base-x"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"cipher-base","old_version":"1.0.4","new_version":"1.0.7","repository_url":"https://github.com/crypto-browserify/cipher-base"},{"name":"dottie","old_version":"2.0.6","new_version":"2.0.7","repository_url":"https://github.com/mickhansen/dottie.js"},{"name":"form-data","old_version":"4.0.0","new_version":"4.0.5","repository_url":"https://github.com/form-data/form-data"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"qs","old_version":"6.11.2","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tar","old_version":"6.1.15","new_version":"6.2.1","repository_url":"https://github.com/isaacs/node-tar"},{"name":"undici","old_version":"5.28.3","new_version":"5.29.0","repository_url":"https://github.com/nodejs/undici"},{"name":"validator","old_version":"13.11.0","new_version":"13.15.26","repository_url":"https://github.com/validatorjs/validator.js"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 20 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk](https://github.com/aws/aws-sdk-js) | `2.1448.0` | `2.1693.0` |\n| [axios](https://github.com/axios/axios) | `1.5.0` | `1.13.5` |\n| [bn.js](https://github.com/indutny/bn.js) | `5.2.1` | `5.2.3` |\n| [fastify](https://github.com/fastify/fastify) | `4.22.0` | `5.7.3` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [next](https://github.com/vercel/next.js) | `13.4.2` | `15.5.10` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [base-x](https://github.com/cryptocoinjs/base-x) | `3.0.9` | `3.0.11` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [cipher-base](https://github.com/crypto-browserify/cipher-base) | `1.0.4` | `1.0.7` |\n| [dottie](https://github.com/mickhansen/dottie.js) | `2.0.6` | `2.0.7` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [qs](https://github.com/ljharb/qs) | `6.11.2` | `6.15.0` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.15` | `6.2.1` |\n| [undici](https://github.com/nodejs/undici) | `5.28.3` | `5.29.0` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.11.0` | `13.15.26` |\n\nBumps the npm_and_yarn group with 1 update in the /packages/account-postgres-sink-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/active-device-oracle directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/distributor-oracle directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/docsite directory: [next](https://github.com/vercel/next.js).\nBumps the npm_and_yarn group with 1 update in the /packages/fanout-metadata-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/faucet-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/metadata-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/migration-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/monitor-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/rewards-oracle-faucet-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/tokens-to-rent-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/vsr-metadata-service directory: [fastify](https://github.com/fastify/fastify).\n\nUpdates `aws-sdk` from 2.1448.0 to 2.1693.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js/releases\"\u003eaws-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.1693.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1692.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1691.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1690.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1689.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1688.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1687.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1686.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1685.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1684.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1683.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1682.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1681.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1680.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1679.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1678.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1677.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/9d3c66eca8c4416a9d347d0703f27b65775d65ef\"\u003e\u003ccode\u003e9d3c66e\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1693.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c039567cee58b50a44f53f30318fa21f36c42ecc\"\u003e\u003ccode\u003ec039567\u003c/code\u003e\u003c/a\u003e test(client-elastictranscoder): remove feature test (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4711\"\u003e#4711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/f5b1a6f0aebb477204d979091d654649f29ad9ce\"\u003e\u003ccode\u003ef5b1a6f\u003c/code\u003e\u003c/a\u003e docs: end-of-support (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4706\"\u003e#4706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/657d6feb00447c8be1d65158a0ecc0585b70ed60\"\u003e\u003ccode\u003e657d6fe\u003c/code\u003e\u003c/a\u003e chore: use ssh private key for git sync (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4705\"\u003e#4705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c12585baeb9197158cd50975af66856617732aea\"\u003e\u003ccode\u003ec12585b\u003c/code\u003e\u003c/a\u003e chore: remove regression label management (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4699\"\u003e#4699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/966fa6c316dbb11ca9277564ff7120e6b16467f4\"\u003e\u003ccode\u003e966fa6c\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1692.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/5d0e38adbbc1a3fd6e6bf7c48cd7e209e9eb0b5f\"\u003e\u003ccode\u003e5d0e38a\u003c/code\u003e\u003c/a\u003e Delete EC2 launch configuration e2e tests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4685\"\u003e#4685\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/b9ce3461a495dcf4f4a0be133e103d98130847a6\"\u003e\u003ccode\u003eb9ce346\u003c/code\u003e\u003c/a\u003e chore: fix issue config (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4683\"\u003e#4683\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c06668172b233e0b2ded1afc48f0a11f6b79735c\"\u003e\u003ccode\u003ec066681\u003c/code\u003e\u003c/a\u003e Update issue template config and disable docs requests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4682\"\u003e#4682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/163a7cfc86308e0b54245c04fb7b317bcd3893b0\"\u003e\u003ccode\u003e163a7cf\u003c/code\u003e\u003c/a\u003e Modified bug issue template to add checkbox to report potential regression. (...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-js/compare/v2.1448.0...v2.1693.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.5.0 to 1.13.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.5\u003c/h2\u003e\n\u003ch2\u003eRelease 1.13.5\u003c/h2\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fixed a potential \u003cstrong\u003eDenial of Service\u003c/strong\u003e issue involving the \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBug fix:\u003c/strong\u003e Resolved an issue where \u003ccode\u003eAxiosError\u003c/code\u003e could be missing the \u003ccode\u003estatus\u003c/code\u003e field on and after \u003cstrong\u003ev1.13.3\u003c/strong\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch4\u003eSecurity\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix Denial of Service via \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix/5657. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7313\"\u003e#7313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure \u003ccode\u003estatus\u003c/code\u003e is present in \u003ccode\u003eAxiosError\u003c/code\u003e on and after v1.13.3. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFeatures / Improvements\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAdd input validation to \u003ccode\u003eisAbsoluteURL\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRefactor: bump minor package versions. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7356\"\u003e#7356\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDocumentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eClarify object-check comment. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix deprecated \u003ccode\u003eBuffer\u003c/code\u003e constructor usage and README formatting. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCI / Maintenance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eChore: fix issues with YAML. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7355\"\u003e#7355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: update workflow YAMLs. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: fix run condition. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDev deps: bump \u003ccode\u003ekarma-sourcemap-loader\u003c/code\u003e from 0.3.8 to 0.4.0. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChore(release): prepare release 1.13.5. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sachin11063\"\u003e\u003ccode\u003e@​sachin11063\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/asmitha-16\"\u003e\u003ccode\u003e@​asmitha-16\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog:\u003c/strong\u003e \u003ca href=\"https://github.com/axios/axios/compare/v1.13.4...v1.13.5\"\u003ehttps://github.com/axios/axios/compare/v1.13.4...v1.13.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.13.4\u003c/h2\u003e\n\u003ch2\u003eOverview\u003c/h2\u003e\n\u003cp\u003eThe release addresses issues discovered in v1.13.3 and includes significant CI/CD improvements.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v1.13.3...v1.13.4\"\u003ev1.13.3...v1.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's New in v1.13.4\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix: issues with version 1.13.3\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7352\"\u003e#7352\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ee90dfc28abffbb61e24974b2bd3139a4a40ac76\"\u003eee90dfc\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixed issues discovered in v1.13.3 release\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7201) [#7201](https://github.com/axios/axios/issues/7201) )\"\u003ecodenomnom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Nandann018-ux\" title=\"+60/-10 ([#7272](https://github.com/axios/axios/issues/7272) )\"\u003eNandan Acharya\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/KernelDeimos\" title=\"+22/-40 ([#7042](https://github.com/axios/axios/issues/7042) )\"\u003eEric Dubé\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/tiborpilz\" title=\"+40/-4 ([#5551](https://github.com/axios/axios/issues/5551) )\"\u003eTibor Pilz\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/joaoGabriel55\" title=\"+31/-4 ([#6314](https://github.com/axios/axios/issues/6314) )\"\u003eGabriel Quaresma\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/turadg\" title=\"+23/-6 ([#6265](https://github.com/axios/axios/issues/6265) )\"\u003eTuradg Aleahmad\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/29f75425f0c9f73021f5eedc869c176e30e05fe7\"\u003e\u003ccode\u003e29f7542\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.13.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/431c3a361490a2e3d5ac5d9e08d66d4bb5f3cd2a\"\u003e\u003ccode\u003e431c3a3\u003c/code\u003e\u003c/a\u003e ci: fix run condition (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9ff3a78ad72ecd665a4b673686f1517d824284bf\"\u003e\u003ccode\u003e9ff3a78\u003c/code\u003e\u003c/a\u003e ci: update ymls (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/265b71234c20fabbd6d691858c65a7e9c978659f\"\u003e\u003ccode\u003e265b712\u003c/code\u003e\u003c/a\u003e docs: fix deprecated Buffer constructor and formatting issues in README (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/475e75a260668d227aec9f77735a49748c9041ff\"\u003e\u003ccode\u003e475e75a\u003c/code\u003e\u003c/a\u003e feat: add input validation to isAbsoluteURL (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57\"\u003e\u003ccode\u003e28c7215\u003c/code\u003e\u003c/a\u003e fix: Denial of Service via \u003cstrong\u003eproto\u003c/strong\u003e Key in mergeConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/04cf01969ed58f96920da032f340bfe4614aab90\"\u003e\u003ccode\u003e04cf019\u003c/code\u003e\u003c/a\u003e docs: clarify object check comment (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/696fa753c5366afbd21859c294c64c9ff2b359ab\"\u003e\u003ccode\u003e696fa75\u003c/code\u003e\u003c/a\u003e fix: status is missing in AxiosError on and after v1.13.3 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/569f028a5878faaec8d7d138ba686aac407bda4c\"\u003e\u003ccode\u003e569f028\u003c/code\u003e\u003c/a\u003e fix: added a option to choose between legacy and the new request/response int...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/44b7c9f0c4900fd8784f18e871199402f07fc69f\"\u003e\u003ccode\u003e44b7c9f\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump karma-sourcemap-loader (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.5.0...v1.13.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bn.js` from 5.2.1 to 5.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/indutny/bn.js/blob/master/CHANGELOG.md\"\u003ebn.js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.2.3 / 2026-02-19\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.2 / 2025-04-25\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/ea6c072a951493ca99e5cd5f8da3851b90116271\"\u003e\u003ccode\u003eea6c072\u003c/code\u003e\u003c/a\u003e 5.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/33df26b5771e824f303a79ec6407409376baa64b\"\u003e\u003ccode\u003e33df26b\u003c/code\u003e\u003c/a\u003e fix imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/6db7c3818569423b94ebcf2bdff90fcfb9c47f6d\"\u003e\u003ccode\u003e6db7c38\u003c/code\u003e\u003c/a\u003e 5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/c7e1a532566c83fd0297ff7669c227b824928bf4\"\u003e\u003ccode\u003ec7e1a53\u003c/code\u003e\u003c/a\u003e Fix imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/4cc0bfa5195d54876a6b807827e582522c813019\"\u003e\u003ccode\u003e4cc0bfa\u003c/code\u003e\u003c/a\u003e docs: mention the max plain JS number argument value (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/307\"\u003e#307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/5df40f81ea8afb835b909bb7c21e0833cdeb6a30\"\u003e\u003ccode\u003e5df40f8\u003c/code\u003e\u003c/a\u003e Document \u003ccode\u003elength\u003c/code\u003e unit in \u003ccode\u003etoBuffer(...)\u003c/code\u003e input (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/299\"\u003e#299\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/indutny/bn.js/compare/v5.2.1...v5.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fastify` from 4.22.0 to 5.7.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fastify/releases\"\u003efastify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.7.3\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c\"\u003ehttps://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c\u003c/a\u003e \u003ccode\u003eCVE-2026-25224\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update Reply.send() documentation for string serialization by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6466\"\u003efastify/fastify#6466\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: ignore agents config files by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6474\"\u003efastify/fastify#6474\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update vulnerability reporting to use GitHub Security by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6475\"\u003efastify/fastify#6475\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.2...v5.7.3\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.2...v5.7.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.2\u003c/h2\u003e\n\u003ch2\u003e⚠️ Notice ⚠️\u003c/h2\u003e\n\u003cp\u003eParsing of the \u003ccode\u003econtent-type\u003c/code\u003e header has been improved to a strict parser in PR \u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6414\"\u003e#6414\u003c/a\u003e. This means only header values in the form described in \u003ca href=\"https://httpwg.org/specs/rfc9110.html#field.content-type\"\u003eRFC 9110\u003c/a\u003e are accepted.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: npm ignore AI related files by \u003ca href=\"https://github.com/climba03003\"\u003e\u003ccode\u003e@​climba03003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6447\"\u003efastify/fastify#6447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update sponsor url by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6450\"\u003efastify/fastify#6450\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add fastify-http-exceptions to Ecosystem.md by \u003ca href=\"https://github.com/bhouston\"\u003e\u003ccode\u003e@​bhouston\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6442\"\u003efastify/fastify#6442\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix invalid shorten form schema example by \u003ca href=\"https://github.com/climba03003\"\u003e\u003ccode\u003e@​climba03003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6448\"\u003efastify/fastify#6448\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Simplify and tighten decorators example by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6451\"\u003efastify/fastify#6451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Fix incorrect variable use by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6455\"\u003efastify/fastify#6455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update sponsor link by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6460\"\u003efastify/fastify#6460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Fix MIT Licence file to conform to standard by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6464\"\u003efastify/fastify#6464\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: move querystringParser option under routerOptions by \u003ca href=\"https://github.com/inyourtime\"\u003e\u003ccode\u003e@​inyourtime\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6463\"\u003efastify/fastify#6463\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Updated content-type header parsing by \u003ca href=\"https://github.com/jsumners\"\u003e\u003ccode\u003e@​jsumners\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6414\"\u003efastify/fastify#6414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bhouston\"\u003e\u003ccode\u003e@​bhouston\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6442\"\u003efastify/fastify#6442\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.1...v5.7.2\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.1...v5.7.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Bump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6434\"\u003efastify/fastify#6434\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: updated version in the fastify.js by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6446\"\u003efastify/fastify#6446\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.0...v5.7.1\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.0...v5.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: Improved firebase serverless guide about process remaining stuck by \u003ca href=\"https://github.com/alexandercerutti\"\u003e\u003ccode\u003e@​alexandercerutti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6380\"\u003efastify/fastify#6380\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update migration guide with date-time breaking change by \u003ca href=\"https://github.com/craftsman01\"\u003e\u003ccode\u003e@​craftsman01\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6110\"\u003efastify/fastify#6110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove test file by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6384\"\u003efastify/fastify#6384\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: speed up loading with custom compiler by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6383\"\u003efastify/fastify#6383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: replace all instances of twitter.com with x.com by \u003ca href=\"https://github.com/cseas\"\u003e\u003ccode\u003e@​cseas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6355\"\u003efastify/fastify#6355\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/49468eddb7c59e07fb95183afbf03498fccac99e\"\u003e\u003ccode\u003e49468ed\u003c/code\u003e\u003c/a\u003e Bumped v5.7.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/eb11156396f6a5fedaceed0140aed2b7f026be37\"\u003e\u003ccode\u003eeb11156\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/d98ce2a0c030e18d27d93ed000788f95944ed910\"\u003e\u003ccode\u003ed98ce2a\u003c/code\u003e\u003c/a\u003e docs: update vulnerability reporting to use GitHub Security (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6475\"\u003e#6475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/17172c40506604fd15f8e5f17299b671d4b58686\"\u003e\u003ccode\u003e17172c4\u003c/code\u003e\u003c/a\u003e Ignore agents config files (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6474\"\u003e#6474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/b48826f07beaa925809c5e347d67a7e2502eb156\"\u003e\u003ccode\u003eb48826f\u003c/code\u003e\u003c/a\u003e docs: update Reply.send() documentation for string serialization (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6466\"\u003e#6466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/e1e4fe75910c36e1b9ebb87026ca16c053a9c1f2\"\u003e\u003ccode\u003ee1e4fe7\u003c/code\u003e\u003c/a\u003e v5.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/32d7b6add39ddf082d92579a58bea7018c5ac821\"\u003e\u003ccode\u003e32d7b6a\u003c/code\u003e\u003c/a\u003e chore: Updated content-type header parsing (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6414\"\u003e#6414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/f4a6ac1d0321e9f1757c165a2d423ccbefe7c9c9\"\u003e\u003ccode\u003ef4a6ac1\u003c/code\u003e\u003c/a\u003e docs: move querystringParser example under routerOptions (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6463\"\u003e#6463\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/2af83d64b53a0a786141d93edb9ffefac8b6446a\"\u003e\u003ccode\u003e2af83d6\u003c/code\u003e\u003c/a\u003e fix: Fix MIT Licence file to conform to standard (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6464\"\u003e#6464\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/5c14e05670c80455b99286ee0b6eac05eabec831\"\u003e\u003ccode\u003e5c14e05\u003c/code\u003e\u003c/a\u003e chore: update sponsor link (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6460\"\u003e#6460\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fastify/compare/v4.22.0...v5.7.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `next` from 13.4.2 to 15.5.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vercel/next.js/releases\"\u003enext's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev15.5.10\u003c/h2\u003e\n\u003cp\u003ePlease refer the following changelogs for more information about this security release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://vercel.com/changelog/summaries-of-cve-2025-59471-and-cve-2025-59472\"\u003ehttps://vercel.com/changelog/summaries-of-cve-2025-59471-and-cve-2025-59472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003ehttps://vercel.com/changelog/summary-of-cve-2026-23864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev15.4.11\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.3.9\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.2.9\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.1.12\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.0.8\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/60a2aa97b6692d3a56e483f0ff93febaf6f33fd6\"\u003e\u003ccode\u003e60a2aa9\u003c/code\u003e\u003c/a\u003e v15.5.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/e5b834d208fe0edf64aa26b5d76dcf6a176500ec\"\u003e\u003ccode\u003ee5b834d\u003c/code\u003e\u003c/a\u003e fetch(next/image): reduce maximumResponseBody from 300MB to 50MB (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/88588\"\u003e#88588\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/39a2f6a8d13dfa50cee843f93241c8c1dbaf801e\"\u003e\u003ccode\u003e39a2f6a\u003c/code\u003e\u003c/a\u003e feat(next/image)!: add \u003ccode\u003eimages.maximumResponseBody\u003c/code\u003e config (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/88183\"\u003e#88183\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/bf9f0843edab3a7cf9d4c85b315bc33c87b282ce\"\u003e\u003ccode\u003ebf9f084\u003c/code\u003e\u003c/a\u003e Sync DoS mitigations for React Flight\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/c5de33e93ccccaf3bee60cf50603e2152f9886e1\"\u003e\u003ccode\u003ec5de33e\u003c/code\u003e\u003c/a\u003e v15.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/dd233994aeb24e906cdb9aedca5447cdef401792\"\u003e\u003ccode\u003edd23399\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/facebook/react/issues/35351\"\u003efacebook/react#35351\u003c/a\u003e for 15.5.8 (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/87086\"\u003e#87086\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/7526cd6f24300726964eaba78927fe2a9c3fed5e\"\u003e\u003ccode\u003e7526cd6\u003c/code\u003e\u003c/a\u003e v15.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/1e9ec4133af3657964833bfcc9abb0ee73fb19f0\"\u003e\u003ccode\u003e1e9ec41\u003c/code\u003e\u003c/a\u003e Update React Version (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/41\"\u003e#41\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/16141e5df9ce51136ba42988b574981f89d01081\"\u003e\u003ccode\u003e16141e5\u003c/code\u003e\u003c/a\u003e Update React Version (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/30\"\u003e#30\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/e01e589e181d66d48c57698238b8b7f59218dfef\"\u003e\u003ccode\u003ee01e589\u003c/code\u003e\u003c/a\u003e Backport Next.js changes to v15.5.8 (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/23\"\u003e#23\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vercel/next.js/compare/v13.4.2...v15.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `base-x` from 3.0.9 to 3.0.11\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/043a888a9bae09bc4b40500e37792e2c6398e9f2\"\u003e\u003ccode\u003e043a888\u003c/code\u003e\u003c/a\u003e 3.0.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/2705dddd2565b455641985974b534291d8defb31\"\u003e\u003ccode\u003e2705ddd\u003c/code\u003e\u003c/a\u003e [backport 3.x] Prohibit char codes that would overflow the \u003ccode\u003eBASE_MAP\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/3d43c0e16bfbc045a0a8bb6423e6e336df81b512\"\u003e\u003ccode\u003e3d43c0e\u003c/code\u003e\u003c/a\u003e 3.0.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/0a3544695fa6800649a8b78ed46cece61bcdbbe5\"\u003e\u003ccode\u003e0a35446\u003c/code\u003e\u003c/a\u003e Improve decoding performance\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/cryptocoinjs/base-x/compare/v3.0.9...v3.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cipher-base` from 1.0.4 to 1.0.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/browserify/cipher-base/blob/master/CHANGELOG.md\"\u003ecipher-base's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.6...v1.0.7\"\u003ev1.0.7\u003c/a\u003e - 2025-09-24\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003eto-buffer\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/fd1e5eeafccbc8eaa827ee6b9b60c14608aa784f\"\u003e\u003ccode\u003efd1e5ee\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/08ba8034223a53d300b7dccf33d8f14e52379a34\"\u003e\u003ccode\u003e08ba803\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.5...v1.0.6\"\u003ev1.0.6\u003c/a\u003e - 2024-11-26\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] io.js 3.0 - Node.js 5.3 typed array support \u003ca href=\"https://github.com/browserify/cipher-base/commit/b7ddd2ac24e65cc47befc1e0eb5026422f8ab037\"\u003e\u003ccode\u003eb7ddd2a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.4...v1.0.5\"\u003ev1.0.5\u003c/a\u003e - 2024-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] standard -\u0026gt; eslint, make test dir, etc \u003ca href=\"https://github.com/browserify/cipher-base/commit/ae02fd6624c41ac4ac18077be797111d1955bc76\"\u003e\u003ccode\u003eae02fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] migrate from travis to GHA \u003ca href=\"https://github.com/browserify/cipher-base/commit/66387d71461287ad9067bb1bcbfdc47403a33ee7\"\u003e\u003ccode\u003e66387d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix package.json indentation \u003ca href=\"https://github.com/browserify/cipher-base/commit/5c02918ac58c875ed36913c2dc3e1043f4d1c99c\"\u003e\u003ccode\u003e5c02918\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] return valid values on multi-byte-wide TypedArray input \u003ca href=\"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294\"\u003e\u003ccode\u003e8fd1364\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/88dc806806d3dc41444dbf639c87c00f82c949b3\"\u003e\u003ccode\u003e88dc806\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003enpmignore\u003c/code\u003e and \u003ccode\u003esafe-publish-latest\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/7a137d749ce7ea7ea56b9c096844b1b8ab723f61\"\u003e\u003ccode\u003e7a137d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly apps should have lockfiles \u003ca href=\"https://github.com/browserify/cipher-base/commit/42528f291db16bf2e7d5f831ebe2ad87fd0b1f42\"\u003e\u003ccode\u003e42528f2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003einherits\u003c/code\u003e, \u003ccode\u003esafe-buffer\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/0e7a2d9a33a391e82fa9cf512d6e25cc91ab8613\"\u003e\u003ccode\u003e0e7a2d9\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add missing \u003ccode\u003eengines.node\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/f2dc13e47bbcf3c873db9a9e0f83e5f29d0783fe\"\u003e\u003ccode\u003ef2dc13e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/00567180c846dd3db3848c9223991c58a0d5490c\"\u003e\u003ccode\u003e0056718\u003c/code\u003e\u003c/a\u003e v1.0.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/fd1e5eeafccbc8eaa827ee6b9b60c14608aa784f\"\u003e\u003ccode\u003efd1e5ee\u003c/code\u003e\u003c/a\u003e [Refactor] use \u003ccode\u003eto-buffer\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/08ba8034223a53d300b7dccf33d8f14e52379a34\"\u003e\u003ccode\u003e08ba803\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/f5249f94611506ef35a8be4d48a3fc5ecf1fac63\"\u003e\u003ccode\u003ef5249f9\u003c/code\u003e\u003c/a\u003e v1.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/b7ddd2ac24e65cc47befc1e0eb5026422f8ab037\"\u003e\u003ccode\u003eb7ddd2a\u003c/code\u003e\u003c/a\u003e [Fix] io.js 3.0 - Node.js 5.3 typed array support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/f03cebfdad1cba1d56614c58affa303b0fa2a43e\"\u003e\u003ccode\u003ef03cebf\u003c/code\u003e\u003c/a\u003e v1.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/88dc806806d3dc41444dbf639c87c00f82c949b3\"\u003e\u003ccode\u003e88dc806\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/7a137d749ce7ea7ea56b9c096844b1b8ab723f61\"\u003e\u003ccode\u003e7a137d7\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003enpmignore\u003c/code\u003e and \u003ccode\u003esafe-publish-latest\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/5c02918ac58c875ed36913c2dc3e1043f4d1c99c\"\u003e\u003ccode\u003e5c02918\u003c/code\u003e\u003c/a\u003e [meta] fix package.json indentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294\"\u003e\u003ccode\u003e8fd1364\u003c/code\u003e\u003c/a\u003e [Fix] return valid values on multi-byte-wide TypedArray input\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/crypto-browserify/cipher-base/compare/v1.0.4...v1.0.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for cipher-base since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dottie` from 2.0.6 to 2.0.7\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mickhansen/dottie.js/commit/334c32b80ed536522b567ee6a844caf8e5fef9c3\"\u003e\u003ccode\u003e334c32b\u003c/code\u003e\u003c/a\u003e 2.0.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mickhansen/dottie.js/commit/7e8fa1345a4b46325f0eab8d7aeb1c4deaefdb14\"\u003e\u003ccode\u003e7e8fa13\u003c/code\u003e\u003c/a\u003e fix: check all path segments for dangerous keys (bypass of CVE-2023-2… (\u003ca href=\"https://redirect.github.com/mickhansen/dottie.js/issues/43\"\u003e#43\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mickhansen/dottie.js/commit/a72eb993212939d60a2801843ce3e968dfc5c6a6\"\u003e\u003ccode\u003ea72eb99\u003c/code\u003e\u003c/a\u003e Update test GitHub Action (\u003ca href=\"https://redirect.github.com/mickhansen/dottie.js/issues/40\"\u003e#40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mickhansen/dottie.js/compare/v2.0.6...v2.0.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 4.0.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.4...v4.0.5\"\u003ev4.0.5\u003c/a\u003e - 2025-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] Switch to newer v8 prediction library; enable node 24 testing \u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c90856375e498793c7\"\u003e\u003ccode\u003e5822467\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set Symbol.toStringTag in the proper place \u003ca href=\"https://github.com/form-data/form-data/commit/76d0dee43933b5e167f7f09e5d9cbbd1cf911aa7\"\u003e\u003ccode\u003e76d0dee\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/68ff7dda8834d6de095a7008cef0e03bc252ca98\"\u003e\u003ccode\u003e68ff7dd\u003c/code\u003e\u003c/a\u003e v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c90856375e498793c7\"\u003e\u003ccode\u003e5822467\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/76d0dee43933b5e167f7f09e5d9cbbd1cf911aa7\"\u003e\u003ccode\u003e76d0dee\u003c/code\u003e\u003c/a\u003e [Fix] set Symbol.toStringTag in the proper place\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e [Tests] Switch to newer v8 prediction library; enable node 24 testing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/41996f5ac73a867046d48512cab62e64fc846dad\"\u003e\u003ccode\u003e41996f5\u003c/code\u003e\u003c/a\u003e v4.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e [meta] actually ensure the readme backup isn’t published\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e [meta] fix readme capitalization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e [Tests] fix linting errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e [Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.0...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for form-data since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 2.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"h...\n\n_Description has been truncated_","html_url":"https://github.com/JoftheV/helium-program-library/pull/10","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/JoftheV%2Fhelium-program-library/issues/10","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10/packages"},{"uuid":"3992317926","node_id":"PR_kwDOOMz7fs7GYJvw","number":11,"state":"closed","title":"Bump the npm_and_yarn group across 7 directories with 31 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-26T05:42:15.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-25T23:11:32.000Z","updated_at":"2026-02-26T05:42:16.000Z","time_to_close":23443,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":31,"packages":[{"name":"fastify","old_version":"4.17.0","new_version":"5.7.3","repository_url":"https://github.com/fastify/fastify"},{"name":"form-data","old_version":"4.0.0","new_version":"4.0.5","repository_url":"https://github.com/form-data/form-data"},{"name":"esbuild","old_version":"0.15.18","new_version":"0.27.3","repository_url":"https://github.com/evanw/esbuild"},{"name":"qs","old_version":"6.13.1","new_version":"6.14.2","repository_url":"https://github.com/ljharb/qs"},{"name":"brace-expansion","old_version":"2.0.1","new_version":"2.0.2","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"node-forge","old_version":"1.3.1","new_version":"1.3.3","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"tar","old_version":"6.1.14","new_version":"removed","repository_url":"https://github.com/isaacs/node-tar"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 10 updates in the /image.pollinations.ai directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [fastify](https://github.com/fastify/fastify) | `4.17.0` | `5.7.3` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.15.18` | `0.27.3` |\n| [qs](https://github.com/ljharb/qs) | `6.13.1` | `6.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.14` | `removed` |\n\nBumps the npm_and_yarn group with 2 updates in the /image.pollinations.ai/cloudflare-cache directory: [esbuild](https://github.com/evanw/esbuild) and [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler).\nBumps the npm_and_yarn group with 3 updates in the /pollinations-react directory: [esbuild](https://github.com/evanw/esbuild), [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) and [diff](https://github.com/kpdecker/jsdiff).\nBumps the npm_and_yarn group with 9 updates in the /pollinations-react/docs directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [glob](https://github.com/isaacs/node-glob) | `10.3.10` | `10.5.0` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [next](https://github.com/vercel/next.js) | `14.2.11` | `15.5.10` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [prismjs](https://github.com/PrismJS/prism) | `1.27.0` | `1.30.0` |\n\nBumps the npm_and_yarn group with 14 updates in the /pollinations.ai directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [form-data](https://github.com/form-data/form-data) | `3.0.2` | `3.0.4` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) | `2.0.7` | `2.0.9` |\n| [on-headers](https://github.com/jshttp/on-headers) | `1.0.2` | `1.1.0` |\n| [react-router](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router) | `6.28.1` | `6.30.3` |\n| [webpack](https://github.com/webpack/webpack) | `5.97.1` | `5.105.2` |\n\nBumps the npm_and_yarn group with 13 updates in the /text.pollinations.ai directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.1` | `3.5.4` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `9.0.5` | `9.0.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.9` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [axios](https://github.com/axios/axios) | `1.7.7` | `1.13.5` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.0.5` | `5.2.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `3.0.6` | `3.1.1` |\n\nBumps the npm_and_yarn group with 2 updates in the /text.pollinations.ai/cloudflare-cache directory: [esbuild](https://github.com/evanw/esbuild) and [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler).\n\nUpdates `fastify` from 4.17.0 to 5.7.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fastify/releases\"\u003efastify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.7.3\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c\"\u003ehttps://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c\u003c/a\u003e \u003ccode\u003eCVE-2026-25224\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update Reply.send() documentation for string serialization by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6466\"\u003efastify/fastify#6466\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: ignore agents config files by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6474\"\u003efastify/fastify#6474\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update vulnerability reporting to use GitHub Security by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6475\"\u003efastify/fastify#6475\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.2...v5.7.3\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.2...v5.7.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.2\u003c/h2\u003e\n\u003ch2\u003e⚠️ Notice ⚠️\u003c/h2\u003e\n\u003cp\u003eParsing of the \u003ccode\u003econtent-type\u003c/code\u003e header has been improved to a strict parser in PR \u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6414\"\u003e#6414\u003c/a\u003e. This means only header values in the form described in \u003ca href=\"https://httpwg.org/specs/rfc9110.html#field.content-type\"\u003eRFC 9110\u003c/a\u003e are accepted.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: npm ignore AI related files by \u003ca href=\"https://github.com/climba03003\"\u003e\u003ccode\u003e@​climba03003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6447\"\u003efastify/fastify#6447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update sponsor url by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6450\"\u003efastify/fastify#6450\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add fastify-http-exceptions to Ecosystem.md by \u003ca href=\"https://github.com/bhouston\"\u003e\u003ccode\u003e@​bhouston\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6442\"\u003efastify/fastify#6442\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix invalid shorten form schema example by \u003ca href=\"https://github.com/climba03003\"\u003e\u003ccode\u003e@​climba03003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6448\"\u003efastify/fastify#6448\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Simplify and tighten decorators example by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6451\"\u003efastify/fastify#6451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Fix incorrect variable use by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6455\"\u003efastify/fastify#6455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update sponsor link by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6460\"\u003efastify/fastify#6460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Fix MIT Licence file to conform to standard by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6464\"\u003efastify/fastify#6464\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: move querystringParser option under routerOptions by \u003ca href=\"https://github.com/inyourtime\"\u003e\u003ccode\u003e@​inyourtime\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6463\"\u003efastify/fastify#6463\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Updated content-type header parsing by \u003ca href=\"https://github.com/jsumners\"\u003e\u003ccode\u003e@​jsumners\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6414\"\u003efastify/fastify#6414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bhouston\"\u003e\u003ccode\u003e@​bhouston\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6442\"\u003efastify/fastify#6442\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.1...v5.7.2\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.1...v5.7.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Bump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6434\"\u003efastify/fastify#6434\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: updated version in the fastify.js by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6446\"\u003efastify/fastify#6446\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.0...v5.7.1\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.0...v5.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: Improved firebase serverless guide about process remaining stuck by \u003ca href=\"https://github.com/alexandercerutti\"\u003e\u003ccode\u003e@​alexandercerutti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6380\"\u003efastify/fastify#6380\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update migration guide with date-time breaking change by \u003ca href=\"https://github.com/craftsman01\"\u003e\u003ccode\u003e@​craftsman01\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6110\"\u003efastify/fastify#6110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove test file by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6384\"\u003efastify/fastify#6384\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: speed up loading with custom compiler by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6383\"\u003efastify/fastify#6383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: replace all instances of twitter.com with x.com by \u003ca href=\"https://github.com/cseas\"\u003e\u003ccode\u003e@​cseas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6355\"\u003efastify/fastify#6355\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/49468eddb7c59e07fb95183afbf03498fccac99e\"\u003e\u003ccode\u003e49468ed\u003c/code\u003e\u003c/a\u003e Bumped v5.7.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/eb11156396f6a5fedaceed0140aed2b7f026be37\"\u003e\u003ccode\u003eeb11156\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/d98ce2a0c030e18d27d93ed000788f95944ed910\"\u003e\u003ccode\u003ed98ce2a\u003c/code\u003e\u003c/a\u003e docs: update vulnerability reporting to use GitHub Security (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6475\"\u003e#6475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/17172c40506604fd15f8e5f17299b671d4b58686\"\u003e\u003ccode\u003e17172c4\u003c/code\u003e\u003c/a\u003e Ignore agents config files (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6474\"\u003e#6474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/b48826f07beaa925809c5e347d67a7e2502eb156\"\u003e\u003ccode\u003eb48826f\u003c/code\u003e\u003c/a\u003e docs: update Reply.send() documentation for string serialization (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6466\"\u003e#6466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/e1e4fe75910c36e1b9ebb87026ca16c053a9c1f2\"\u003e\u003ccode\u003ee1e4fe7\u003c/code\u003e\u003c/a\u003e v5.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/32d7b6add39ddf082d92579a58bea7018c5ac821\"\u003e\u003ccode\u003e32d7b6a\u003c/code\u003e\u003c/a\u003e chore: Updated content-type header parsing (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6414\"\u003e#6414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/f4a6ac1d0321e9f1757c165a2d423ccbefe7c9c9\"\u003e\u003ccode\u003ef4a6ac1\u003c/code\u003e\u003c/a\u003e docs: move querystringParser example under routerOptions (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6463\"\u003e#6463\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/2af83d64b53a0a786141d93edb9ffefac8b6446a\"\u003e\u003ccode\u003e2af83d6\u003c/code\u003e\u003c/a\u003e fix: Fix MIT Licence file to conform to standard (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6464\"\u003e#6464\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/5c14e05670c80455b99286ee0b6eac05eabec831\"\u003e\u003ccode\u003e5c14e05\u003c/code\u003e\u003c/a\u003e chore: update sponsor link (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6460\"\u003e#6460\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fastify/compare/4.17.0...v5.7.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 4.0.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.4...v4.0.5\"\u003ev4.0.5\u003c/a\u003e - 2025-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] Switch to newer v8 prediction library; enable node 24 testing \u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c90856375e498793c7\"\u003e\u003ccode\u003e5822467\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set Symbol.toStringTag in the proper place \u003ca href=\"https://github.com/form-data/form-data/commit/76d0dee43933b5e167f7f09e5d9cbbd1cf911aa7\"\u003e\u003ccode\u003e76d0dee\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/68ff7dda8834d6de095a7008cef0e03bc252ca98\"\u003e\u003ccode\u003e68ff7dd\u003c/code\u003e\u003c/a\u003e v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c90856375e498793c7\"\u003e\u003ccode\u003e5822467\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/76d0dee43933b5e167f7f09e5d9cbbd1cf911aa7\"\u003e\u003ccode\u003e76d0dee\u003c/code\u003e\u003c/a\u003e [Fix] set Symbol.toStringTag in the proper place\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e [Tests] Switch to newer v8 prediction library; enable node 24 testing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/41996f5ac73a867046d48512cab62e64fc846dad\"\u003e\u003ccode\u003e41996f5\u003c/code\u003e\u003c/a\u003e v4.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e [meta] actually ensure the readme backup isn’t published\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e [meta] fix readme capitalization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e [Tests] fix linting errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e [Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.0...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for form-data since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `esbuild` from 0.15.18 to 0.27.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/releases\"\u003eesbuild's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.27.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ePreserve URL fragments in data URLs (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4370\"\u003e#4370\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eConsider the following HTML, CSS, and SVG:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eindex.html\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"html\"\u003e\u003ccode\u003e\u0026lt;!DOCTYPE html\u0026gt;\n\u0026lt;html\u0026gt;\n  \u0026lt;head\u0026gt;\u0026lt;link rel=\u0026quot;stylesheet\u0026quot; href=\u0026quot;icons.css\u0026quot;\u0026gt;\u0026lt;/head\u0026gt;\n  \u0026lt;body\u0026gt;\u0026lt;div class=\u0026quot;triangle\u0026quot;\u0026gt;\u0026lt;/div\u0026gt;\u0026lt;/body\u0026gt;\n\u0026lt;/html\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eicons.css\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e.triangle {\n  width: 10px;\n  height: 10px;\n  background: currentColor;\n  clip-path: url(./triangle.svg#x);\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003etriangle.svg\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"xml\"\u003e\u003ccode\u003e\u0026lt;svg xmlns=\u0026quot;http://www.w3.org/2000/svg\u0026quot;\u0026gt;\n  \u0026lt;defs\u0026gt;\n    \u0026lt;clipPath id=\u0026quot;x\u0026quot;\u0026gt;\n      \u0026lt;path d=\u0026quot;M0 0H10V10Z\u0026quot;/\u0026gt;\n    \u0026lt;/clipPath\u0026gt;\n  \u0026lt;/defs\u0026gt;\n\u0026lt;/svg\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThe CSS uses a URL fragment (the \u003ccode\u003e#x\u003c/code\u003e) to reference the \u003ccode\u003eclipPath\u003c/code\u003e element in the SVG file. Previously esbuild's CSS bundler didn't preserve the URL fragment when bundling the SVG using the \u003ccode\u003edataurl\u003c/code\u003e loader, which broke the bundled CSS. With this release, esbuild will now preserve the URL fragment in the bundled CSS:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e/* icons.css */\n.triangle {\n  width: 10px;\n  height: 10px;\n  background: currentColor;\n  clip-path: url('data:image/svg+xml,\u0026lt;svg xmlns=\u0026quot;http://www.w3.org/2000/svg\u0026quot;\u0026gt;\u0026lt;defs\u0026gt;\u0026lt;clipPath id=\u0026quot;x\u0026quot;\u0026gt;\u0026lt;path d=\u0026quot;M0 0H10V10Z\u0026quot;/\u0026gt;\u0026lt;/clipPath\u0026gt;\u0026lt;/defs\u0026gt;\u0026lt;/svg\u0026gt;#x');\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/blob/main/CHANGELOG-2022.md\"\u003eesbuild's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog: 2022\u003c/h1\u003e\n\u003cp\u003eThis changelog documents all esbuild versions published in the year 2022 (versions 0.14.11 through 0.16.12).\u003c/p\u003e\n\u003ch2\u003e0.16.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eLoader defaults to \u003ccode\u003ejs\u003c/code\u003e for extensionless files (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/2776\"\u003e#2776\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eCertain packages contain files without an extension. For example, the \u003ccode\u003eyargs\u003c/code\u003e package contains the file \u003ccode\u003eyargs/yargs\u003c/code\u003e which has no extension. Node, Webpack, and Parcel can all understand code that imports \u003ccode\u003eyargs/yargs\u003c/code\u003e because they assume that the file is JavaScript. However, esbuild was previously unable to understand this code because it relies on the file extension to tell it how to interpret the file. With this release, esbuild will now assume files without an extension are JavaScript files. This can be customized by setting the loader for \u003ccode\u003e\u0026quot;\u0026quot;\u003c/code\u003e (the empty string, representing files without an extension) to another loader. For example, if you want files without an extension to be treated as CSS instead, you can do that like this:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eCLI:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003eesbuild --bundle --loader:=css\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJS:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eesbuild.build({\n  bundle: true,\n  loader: { '': 'css' },\n})\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eGo:\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eapi.Build(api.BuildOptions{\n  Bundle: true,\n  Loader: map[string]api.Loader{\u0026quot;\u0026quot;: api.LoaderCSS},\n})\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn addition, the \u003ccode\u003e\u0026quot;type\u0026quot;\u003c/code\u003e field in \u003ccode\u003epackage.json\u003c/code\u003e files now only applies to files with an explicit \u003ccode\u003e.js\u003c/code\u003e, \u003ccode\u003e.jsx\u003c/code\u003e, \u003ccode\u003e.ts\u003c/code\u003e, or \u003ccode\u003e.tsx\u003c/code\u003e extension. Previously it was incorrectly applied by esbuild to all files that had an extension other than \u003ccode\u003e.mjs\u003c/code\u003e, \u003ccode\u003e.mts\u003c/code\u003e, \u003ccode\u003e.cjs\u003c/code\u003e, or \u003ccode\u003e.cts\u003c/code\u003e including extensionless files. So for example an extensionless file in a \u003ccode\u003e\u0026quot;type\u0026quot;: \u0026quot;module\u0026quot;\u003c/code\u003e package is now treated as CommonJS instead of ESM.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.16.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAvoid a syntax error in the presence of direct \u003ccode\u003eeval\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/2761\"\u003e#2761\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe behavior of nested \u003ccode\u003efunction\u003c/code\u003e declarations in JavaScript depends on whether the code is run in strict mode or not. It would be problematic if esbuild preserved nested \u003ccode\u003efunction\u003c/code\u003e declarations in its output because then the behavior would depend on whether the output was run in strict mode or not instead of respecting the strict mode behavior of the original source code. To avoid this, esbuild transforms nested \u003ccode\u003efunction\u003c/code\u003e declarations to preserve the intended behavior of the original source code regardless of whether the output is run in strict mode or not:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003e// Original code\nif (true) {\n  function foo() {}\n  console.log(!!foo)\n  foo = null\n  console.log(!!foo)\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/9129e00e6c36a3e374820cb5e3fc2cd319c8ab85\"\u003e\u003ccode\u003e9129e00\u003c/code\u003e\u003c/a\u003e publish 0.27.3 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/e20e4115acda9c9f052fdd1ec8d7d5c5489e837b\"\u003e\u003ccode\u003ee20e411\u003c/code\u003e\u003c/a\u003e small fix to release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/0dc0f2dee556460bd7b81d5bbbae5a2f86449ab6\"\u003e\u003ccode\u003e0dc0f2d\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4322\"\u003e#4322\u003c/a\u003e: parse and print CSS \u003ccode\u003e@scope\u003c/code\u003e rules\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/55fe39164cd3429fcb92c6f358a8dfe2f6e6e559\"\u003e\u003ccode\u003e55fe391\u003c/code\u003e\u003c/a\u003e update firefox css gradient support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/2c35297c7ad249a51b9cc3974fa91f74dc13f68c\"\u003e\u003ccode\u003e2c35297\u003c/code\u003e\u003c/a\u003e update gradient lowering transform\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/9209e4445abe7610018f0f758fd5d1fa13ec3ea8\"\u003e\u003ccode\u003e9209e44\u003c/code\u003e\u003c/a\u003e Update Go to 1.25.7 (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4388\"\u003e#4388\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/e8d861b68cf8c3c3a4806ec87444ee48b9af1ade\"\u003e\u003ccode\u003ee8d861b\u003c/code\u003e\u003c/a\u003e close \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4374\"\u003e#4374\u003c/a\u003e: compat table for the \u003ccode\u003eusing\u003c/code\u003e feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/19b8887368396934957abd75f316cc069d6cc067\"\u003e\u003ccode\u003e19b8887\u003c/code\u003e\u003c/a\u003e no longer need \u003ccode\u003ewilliamkapke/node-compat-table\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/7e442189722b54bc6c574ae1148e1014d99e5f32\"\u003e\u003ccode\u003e7e44218\u003c/code\u003e\u003c/a\u003e the \u003ccode\u003ekangax/compat-table\u003c/code\u003e repo moved to a new url\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/23b9338ed5efbdfa29d59b8b0d8088b1761fdc39\"\u003e\u003ccode\u003e23b9338\u003c/code\u003e\u003c/a\u003e run \u003ccode\u003emake update-compat-table\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/evanw/esbuild/compare/v0.15.18...v0.27.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for esbuild since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 8.12.0 to 8.18.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.1 to 6.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/bdcf0c7f82387c18ac8fabfccd2f440645cef47b\"\u003e\u003ccode\u003ebdcf0c7\u003c/code\u003e\u003c/a\u003e v6.14.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/294db90c812ddbe7d7a35d5687c505fd21a2d6a2\"\u003e\u003ccode\u003e294db90\u003c/code\u003e\u003c/a\u003e [readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/5c308e5516c270a78caa6f278465914090f91ec6\"\u003e\u003ccode\u003e5c308e5\u003c/code\u003e\u003c/a\u003e [readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6addf8cf738d529c54d91f6f3ffb6c1be91bbfdc\"\u003e\u003ccode\u003e6addf8c\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cfc108f662326d6ab540f3545ef0b832baf83cdf\"\u003e\u003ccode\u003ecfc108f\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/`pars...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/febb64442a80e49200211fa38d3c96b58024ac77\"\u003e\u003ccode\u003efebb644\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when `thr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/f6a7abff1f13d644db9b05fe4f2c98ada6bf8482\"\u003e\u003ccode\u003ef6a7abf\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/fbc5206c25b4d1851cea683f02c10756c521d15a\"\u003e\u003ccode\u003efbc5206\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/1b9a8b4e78c6aff4c22fa559107227f02fd0216a\"\u003e\u003ccode\u003e1b9a8b4\u003c/code\u003e\u003c/a\u003e [actions] fix rebase workflow permissions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/2a35775614e0fb46ac8a3060201a32a7c23a7fda\"\u003e\u003ccode\u003e2a35775\u003c/code\u003e\u003c/a\u003e [meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.1...v6.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 2.0.1 to 2.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 2.x  14f1d91\u003c/li\u003e\n\u003cli\u003efmt  ed7780a\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  36603d5\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/a3efcee659ef0fb381e2b50d759c720900580a15\"\u003e\u003ccode\u003ea3efcee\u003c/code\u003e\u003c/a\u003e 2.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/14f1d91b0523ffb0c8bbe6a28dc98ddc56ae53bc\"\u003e\u003ccode\u003e14f1d91\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 2.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ed7780ab1cb8a7696f1813b5a945fcc70d8d1990\"\u003e\u003ccode\u003eed7780a\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/36603d5f3599a37af9e85eda30acd7d28599c36e\"\u003e\u003ccode\u003e36603d5\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 2.x  14f1d91\u003c/li\u003e\n\u003cli\u003efmt  ed7780a\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  36603d5\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/a3efcee659ef0fb381e2b50d759c720900580a15\"\u003e\u003ccode\u003ea3efcee\u003c/code\u003e\u003c/a\u003e 2.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/14f1d91b0523ffb0c8bbe6a28dc98ddc56ae53bc\"\u003e\u003ccode\u003e14f1d91\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 2.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ed7780ab1cb8a7696f1813b5a945fcc70d8d1990\"\u003e\u003ccode\u003eed7780a\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/36603d5f3599a37af9e85eda30acd7d28599c36e\"\u003e\u003ccode\u003e36603d5\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cookie` from 0.5.0 to 0.7.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jshttp/cookie/releases\"\u003ecookie's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.7.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAllow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eAlthough not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eAdd fast path for \u003ccode\u003eserialize\u003c/code\u003e without options, use \u003ccode\u003eobj.hasOwnProperty\u003c/code\u003e when parsing (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: parse cookies ~10% faster (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e by \u003ca href=\"https://github.com/kurtextrem\"\u003e\u003ccode\u003e@​kurtextrem\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/170\"\u003e#170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: narrow the validation of cookies to match RFC6265 (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/167\"\u003e#167\u003c/a\u003e by \u003ca href=\"https://github.com/bewinsnw\"\u003e\u003ccode\u003e@​bewinsnw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: add \u003ccode\u003emain\u003c/code\u003e to \u003ccode\u003epackage.json\u003c/code\u003e for rspack (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/166\"\u003e#166\u003c/a\u003e by \u003ca href=\"https://github.com/proudparrot2\"\u003e\u003ccode\u003e@​proudparrot2\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\"\u003ehttps://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003epartitioned\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/cf4658f492c5bd96aeaf5693c3500f8495031014\"\u003e\u003ccode\u003ecf4658f\u003c/code\u003e\u003c/a\u003e 0.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/6a8b8f5a49af7897b98ebfb29a1c4955afa3d33e\"\u003e\u003ccode\u003e6a8b8f5\u003c/code\u003e\u003c/a\u003e Allow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/58015c0b93de0b63db245cfdc5a108e511a81ad0\"\u003e\u003ccode\u003e58015c0\u003c/code\u003e\u003c/a\u003e Remove more code and perf wins (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/ab057d6c06b94a7b1e3358e69a685ae49c97b627\"\u003e\u003ccode\u003eab057d6\u003c/code\u003e\u003c/a\u003e 0.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/5f02ca87688481dbcf155e49ca8b61732f30e542\"\u003e\u003ccode\u003e5f02ca8\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/a5d591ce8447dd63821779724f96ad3c774c8579\"\u003e\u003ccode\u003ea5d591c\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/51968f94b5e820adeceef505539fa193ffe2d105\"\u003e\u003ccode\u003e51968f9\u003c/code\u003e\u003c/a\u003e Skip isNaN\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/9e7ca51ade4b325307eedd6b4dec190983e9e2cc\"\u003e\u003ccode\u003e9e7ca51\u003c/code\u003e\u003c/a\u003e perf(parse): cache length, return early (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/d6f39b0aab5521a8b118b466a515fd6eb0b9f65e\"\u003e\u003ccode\u003ed6f39b0\u003c/code\u003e\u003c/a\u003e Fix tests for old node\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/6bb701f14e59c5e768933bfae9b578db4ed26c6e\"\u003e\u003ccode\u003e6bb701f\u003c/code\u003e\u003c/a\u003e Remove failing scorecard\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jshttp/cookie/compare/v0.5.0...v0.7.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~blakeembrey\"\u003eblakeembrey\u003c/a\u003e, a new releaser for cookie since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 2.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-forge` from 1.3.1 to 1.3.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md\"\u003enode-forge's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.3.3 - 2025-12-02\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[pkcs12] Make digestAlgorithm parameters optional to fix PKCS#12/PFX issues\nintroduced in 1.3.2.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.3.2 - 2025-11-25\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHIGH\u003c/strong\u003e: ASN.1 Validator Desynchronization\n\u003cul\u003e\n\u003cli\u003eAn Interpretation Conflict (CWE-436) vulnerability in node-forge versions\n1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1\nstructures to desynchronize schema validations, yielding a semantic\ndivergence that may bypass downstream cryptographic verifications and\nsecurity decisions.\u003c/li\u003e\n\u003cli\u003eReported by Hunter Wodzenski.\u003c/li\u003e\n\u003cli\u003eCVE ID: \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-12816\"\u003eCVE-2025-12816\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGHSA ID: \u003ca href=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq\"\u003eGHSA-5gfm-wpxj-wjgq\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHIGH\u003c/strong\u003e: ASN.1 Unbounded Recursion\n\u003cul\u003e\n\u003cli\u003eAn Uncontrolled Recursion (CWE-674) vulnerability in node-forge versions\n1.3.1 and below enables remote, unauthenticated attackers to craft deep\nASN.1 structures that trigger unbounded recursive parsing. This leads to a\nDenial-of-Service (DoS) via stack exhaustion when parsing untrusted DER\ninputs.\u003c/li\u003e\n\u003cli\u003eReported by Hunter Wodzenski.\u003c/li\u003e\n\u003cli\u003eCVE ID: \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-66031\"\u003eCVE-2025-66031\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGHSA ID: \u003ca href=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-554w-wpv2-vw27\"\u003eGHSA-554w-wpv2-vw27\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMODERATE\u003c/strong\u003e: ASN.1 OID Integer Truncation\n\u003cul\u003e\n\u003cli\u003eAn Integer Overflow (CWE-190) vulnerability in node-forge versions 1.3.1\nand below enables remote, unauthenticated attackers to craft ASN.1\nstructures containing OIDs with oversized arcs. These arcs may be decoded\nas smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the\nbypass of downstream OID-based security decisions.\u003c/li\u003e\n\u003cli\u003eReported by Hunter Wodzenski.\u003c/li\u003e\n\u003cli\u003eCVE ID: \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-66030\"\u003eCVE-2025-66030\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGHSA ID: \u003ca href=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-65ch-62r8-g69g\"\u003eGHSA-65ch-62r8-g69g\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[asn1] Fix for vulnerability identified by CVE-2025-12816 PKCS#12 MAC\nverification bypass due to missing macData enforcement and improper\nasn1.validate routine.\u003c/li\u003e\n\u003cli\u003e[asn1] Add \u003ccode\u003efromDer()\u003c/code\u003e max recursion depth check.\n\u003cul\u003e\n\u003cli\u003eAdd a \u003ccode\u003easn1.maxDepth\u003c/code\u003e global configurable maximum depth of 256.\u003c/li\u003e\n\u003cli\u003eAdd a \u003ccode\u003easn1.fromDer()\u003c/code\u003e per-call \u003ccode\u003emaxDepth\u003c/code\u003e option.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNOTE\u003c/strong\u003e: The default maximum is assumed to be higher than needed for valid\ndata. If this assumption is false then this could be a breaking change.\nPlease file an issue if there are use cases that need a higher maximum.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNOTE\u003c/strong\u003e: The per-call \u003ccode\u003emaxDepth\u003c/code\u003e parameter has not been exposed up through\nall of the API stack due to the complexities involved. Please file an issue\nif there are use cases that require this instead of changing the default\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/1cea0aff4901589ae86e314f25782bbe312f9f69\"\u003e\u003ccode\u003e1cea0af\u003c/code\u003e\u003c/a\u003e Release 1.3.3.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/5265989cf5e54cfe1e27a10d71523007ce0507b1\"\u003e\u003ccode\u003e5265989\u003c/code\u003e\u003c/a\u003e Update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/e4f3961406395dd8e985dcf841852ceca73ac3a9\"\u003e\u003ccode\u003ee4f3961\u003c/code\u003e\u003c/a\u003e Fix changelog for release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/503979b0295cf633a30199d6bd937f4a222481a0\"\u003e\u003ccode\u003e503979b\u003c/code\u003e\u003c/a\u003e Update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/c3b3b32a8c157ac57752934d3af63b5f798b58b8\"\u003e\u003ccode\u003ec3b3b32\u003c/code\u003e\u003c/a\u003e Make digestAlgorithm parameters optional\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/6f70043a6db1abb9f3304f3d432efed3ba50fcca\"\u003e\u003ccode\u003e6f70043\u003c/code\u003e\u003c/a\u003e Update CVE details.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/f547b0d292745094190ecb250429d21e8804a375\"\u003e\u003ccode\u003ef547b0d\u003c/code\u003e\u003c/a\u003e Start 1.3.3-0.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/235ad3e70e4fdfdca4fdeb662dfba6588e2c38bd\"\u003e\u003ccode\u003e235ad3e\u003c/code\u003e\u003c/a\u003e Release 1.3.2.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/25982441171dc9815c87d3d886c5c8a1d092b334\"\u003e\u003ccode\u003e2598244\u003c/code\u003e\u003c/a\u003e Update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/0032dd0be8b6fb1b1092ef754d1dde91c10a95ad\"\u003e\u003ccode\u003e0032dd0\u003c/code\u003e\u003c/a\u003e Fix typos.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/digitalbazaar/forge/compare/v1.3.1...v1.3.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nRemoves `tar`\n\nUpdates `vite` from 5.4.11 to 7.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.3.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.7\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.7/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.6\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.6/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.5\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.5/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eNote: 7.2.5 failed to publish so it is skipped on npm\u003c/em\u003e\u003c/p\u003e\n\u003ch2\u003ev7.2.4\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.4/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.3/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@7.2.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@7.2.1/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@7.2.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@7.2.0/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.0-beta.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.0-beta.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.0-beta.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.0-beta.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.1.12\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.1.12/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.1.11\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.1.11/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.0...v7.3.1\"\u003e7.3.1\u003c/a\u003e (2026-01-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"http...\n\n_Description has been truncated_","html_url":"https://github.com/ccwu0918/pollinations/pull/11","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ccwu0918%2Fpollinations/issues/11","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11/packages"},{"uuid":"3987238856","node_id":"PR_kwDOOlCBCM7GHUpq","number":16,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 2 directories with 31 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-25T23:14:16.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-25T05:03:23.000Z","updated_at":"2026-02-25T23:14:18.000Z","time_to_close":65453,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":31,"packages":[{"name":"axios","old_version":"1.7.2","new_version":"1.13.5","repository_url":"https://github.com/axios/axios"},{"name":"pm2","old_version":"5.4.0","new_version":"6.0.14","repository_url":"https://github.com/Unitech/pm2"},{"name":"vite","old_version":"5.2.11","new_version":"5.4.21","repository_url":"https://github.com/vitejs/vite"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"vitest","old_version":"1.6.0","new_version":"1.6.1","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@babel/helpers","old_version":"7.24.5","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"base-x","old_version":"3.0.9","new_version":"3.0.11","repository_url":"https://github.com/cryptocoinjs/base-x"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"cipher-base","old_version":"1.0.4","new_version":"1.0.7","repository_url":"https://github.com/crypto-browserify/cipher-base"},{"name":"diff","old_version":"4.0.2","new_version":"4.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"h3","old_version":"1.11.1","new_version":"1.15.5","repository_url":"https://github.com/h3js/h3"},{"name":"jws","old_version":"3.2.2","new_version":"3.2.3","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"min-document","old_version":"2.19.0","new_version":"2.19.2","repository_url":"https://github.com/Raynos/min-document"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.4","repository_url":"https://github.com/isaacs/minimatch"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.11","repository_url":"https://github.com/ai/nanoid"},{"name":"node-forge","old_version":"1.3.1","new_version":"1.3.3","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"parse-duration","old_version":"1.1.0","new_version":"1.1.2","repository_url":"https://github.com/jkroso/parse-duration"},{"name":"pbkdf2","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/browserify/pbkdf2"},{"name":"qs","old_version":"6.5.3","new_version":"6.5.5","repository_url":"https://github.com/ljharb/qs"},{"name":"secp256k1","old_version":"4.0.3","new_version":"4.0.4","repository_url":"https://github.com/cryptocoinjs/secp256k1-node"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"systeminformation","old_version":"5.22.9","new_version":"5.31.1","repository_url":"https://github.com/sebhildebrandt/systeminformation"},{"name":"undici","old_version":"5.28.4","new_version":"5.29.0","repository_url":"https://github.com/nodejs/undici"},{"name":"validator","old_version":"13.12.0","new_version":"13.15.26","repository_url":"https://github.com/validatorjs/validator.js"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [axios](https://github.com/axios/axios) | `1.7.2` | `1.13.5` |\n| [pm2](https://github.com/Unitech/pm2) | `5.4.0` | `6.0.14` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `5.2.11` | `5.4.21` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `1.6.0` | `1.6.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.24.5` | `7.28.6` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [base-x](https://github.com/cryptocoinjs/base-x) | `3.0.9` | `3.0.11` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [cipher-base](https://github.com/crypto-browserify/cipher-base) | `1.0.4` | `1.0.7` |\n| [diff](https://github.com/kpdecker/jsdiff) | `4.0.2` | `4.0.4` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [h3](https://github.com/h3js/h3) | `1.11.1` | `1.15.5` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [min-document](https://github.com/Raynos/min-document) | `2.19.0` | `2.19.2` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.4` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.11` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [parse-duration](https://github.com/jkroso/parse-duration) | `1.1.0` | `1.1.2` |\n| [pbkdf2](https://github.com/browserify/pbkdf2) | `3.1.2` | `3.1.5` |\n| [qs](https://github.com/ljharb/qs) | `6.5.3` | `6.5.5` |\n| [secp256k1](https://github.com/cryptocoinjs/secp256k1-node) | `4.0.3` | `4.0.4` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [systeminformation](https://github.com/sebhildebrandt/systeminformation) | `5.22.9` | `5.31.1` |\n| [undici](https://github.com/nodejs/undici) | `5.28.4` | `5.29.0` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.12.0` | `13.15.26` |\n\nBumps the npm_and_yarn group with 9 updates in the /packages/utils directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `5.4.4` | `5.4.21` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `1.6.0` | `1.6.1` |\n| [bn.js](https://github.com/indutny/bn.js) | `4.12.0` | `4.12.3` |\n| [bn.js](https://github.com/indutny/bn.js) | `5.2.1` | `5.2.3` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [cross-spawn](https://github.com/moxystudio/node-cross-spawn) | `7.0.3` | `7.0.6` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.21.5` | `0.27.3` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.4` |\n\n\nUpdates `axios` from 1.7.2 to 1.13.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.5\u003c/h2\u003e\n\u003ch2\u003eRelease 1.13.5\u003c/h2\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fixed a potential \u003cstrong\u003eDenial of Service\u003c/strong\u003e issue involving the \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBug fix:\u003c/strong\u003e Resolved an issue where \u003ccode\u003eAxiosError\u003c/code\u003e could be missing the \u003ccode\u003estatus\u003c/code\u003e field on and after \u003cstrong\u003ev1.13.3\u003c/strong\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch4\u003eSecurity\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix Denial of Service via \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix/5657. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7313\"\u003e#7313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure \u003ccode\u003estatus\u003c/code\u003e is present in \u003ccode\u003eAxiosError\u003c/code\u003e on and after v1.13.3. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFeatures / Improvements\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAdd input validation to \u003ccode\u003eisAbsoluteURL\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRefactor: bump minor package versions. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7356\"\u003e#7356\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDocumentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eClarify object-check comment. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix deprecated \u003ccode\u003eBuffer\u003c/code\u003e constructor usage and README formatting. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCI / Maintenance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eChore: fix issues with YAML. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7355\"\u003e#7355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: update workflow YAMLs. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: fix run condition. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDev deps: bump \u003ccode\u003ekarma-sourcemap-loader\u003c/code\u003e from 0.3.8 to 0.4.0. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChore(release): prepare release 1.13.5. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sachin11063\"\u003e\u003ccode\u003e@​sachin11063\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/asmitha-16\"\u003e\u003ccode\u003e@​asmitha-16\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog:\u003c/strong\u003e \u003ca href=\"https://github.com/axios/axios/compare/v1.13.4...v1.13.5\"\u003ehttps://github.com/axios/axios/compare/v1.13.4...v1.13.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.13.4\u003c/h2\u003e\n\u003ch2\u003eOverview\u003c/h2\u003e\n\u003cp\u003eThe release addresses issues discovered in v1.13.3 and includes significant CI/CD improvements.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v1.13.3...v1.13.4\"\u003ev1.13.3...v1.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's New in v1.13.4\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix: issues with version 1.13.3\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7352\"\u003e#7352\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ee90dfc28abffbb61e24974b2bd3139a4a40ac76\"\u003eee90dfc\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixed issues discovered in v1.13.3 release\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7201) [#7201](https://github.com/axios/axios/issues/7201) )\"\u003ecodenomnom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Nandann018-ux\" title=\"+60/-10 ([#7272](https://github.com/axios/axios/issues/7272) )\"\u003eNandan Acharya\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/KernelDeimos\" title=\"+22/-40 ([#7042](https://github.com/axios/axios/issues/7042) )\"\u003eEric Dubé\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/tiborpilz\" title=\"+40/-4 ([#5551](https://github.com/axios/axios/issues/5551) )\"\u003eTibor Pilz\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/joaoGabriel55\" title=\"+31/-4 ([#6314](https://github.com/axios/axios/issues/6314) )\"\u003eGabriel Quaresma\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/turadg\" title=\"+23/-6 ([#6265](https://github.com/axios/axios/issues/6265) )\"\u003eTuradg Aleahmad\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/29f75425f0c9f73021f5eedc869c176e30e05fe7\"\u003e\u003ccode\u003e29f7542\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.13.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/431c3a361490a2e3d5ac5d9e08d66d4bb5f3cd2a\"\u003e\u003ccode\u003e431c3a3\u003c/code\u003e\u003c/a\u003e ci: fix run condition (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9ff3a78ad72ecd665a4b673686f1517d824284bf\"\u003e\u003ccode\u003e9ff3a78\u003c/code\u003e\u003c/a\u003e ci: update ymls (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/265b71234c20fabbd6d691858c65a7e9c978659f\"\u003e\u003ccode\u003e265b712\u003c/code\u003e\u003c/a\u003e docs: fix deprecated Buffer constructor and formatting issues in README (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/475e75a260668d227aec9f77735a49748c9041ff\"\u003e\u003ccode\u003e475e75a\u003c/code\u003e\u003c/a\u003e feat: add input validation to isAbsoluteURL (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57\"\u003e\u003ccode\u003e28c7215\u003c/code\u003e\u003c/a\u003e fix: Denial of Service via \u003cstrong\u003eproto\u003c/strong\u003e Key in mergeConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/04cf01969ed58f96920da032f340bfe4614aab90\"\u003e\u003ccode\u003e04cf019\u003c/code\u003e\u003c/a\u003e docs: clarify object check comment (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/696fa753c5366afbd21859c294c64c9ff2b359ab\"\u003e\u003ccode\u003e696fa75\u003c/code\u003e\u003c/a\u003e fix: status is missing in AxiosError on and after v1.13.3 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/569f028a5878faaec8d7d138ba686aac407bda4c\"\u003e\u003ccode\u003e569f028\u003c/code\u003e\u003c/a\u003e fix: added a option to choose between legacy and the new request/response int...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/44b7c9f0c4900fd8784f18e871199402f07fc69f\"\u003e\u003ccode\u003e44b7c9f\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump karma-sourcemap-loader (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.7.2...v1.13.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pm2` from 5.4.0 to 6.0.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Unitech/pm2/releases\"\u003epm2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.14\u003c/h2\u003e\n\u003ch2\u003e6.0.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed version of \u003ccode\u003e@​pm2/pm2-version-check\u003c/code\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6055\"\u003e#6055\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCVE-2025-64718 Update js-yaml\u003c/li\u003e\n\u003cli\u003ereplace fs.R_OK with fs.constants.T_OK \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6012\"\u003e#6012\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6019\"\u003e#6019\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix blessed dep\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6037\"\u003e#6037\u003c/a\u003e Drop npm-shrinkwrap in favor of fixed dependencies versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5577\"\u003e#5577\u003c/a\u003e fix pm2 monit crash\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6034\"\u003e#6034\u003c/a\u003e replace package-lock.json by npm-shrinkwrap.json\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5915\"\u003e#5915\u003c/a\u003e fix allowing to update namespaced pm2 NPM module (\u003ccode\u003e@​org/module-name\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erevert \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5971\"\u003e#5971\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6031\"\u003e#6031\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.9\u003c/h2\u003e\n\u003ch2\u003e6.0.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdates all typescript definitions\u003c/li\u003e\n\u003cli\u003eupgrade github ci workflows\u003c/li\u003e\n\u003cli\u003eupgrade mocha dep and adapt tests\u003c/li\u003e\n\u003cli\u003ebump packages\u003c/li\u003e\n\u003cli\u003efix:Potential ReDoS Vulnerability or Inefficient Regular Expression in Project: Need for Assessment and Mitigation \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5971\"\u003e#5971\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: package-lock update\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: ansis-node10 \u003ca href=\"https://github.com/Unitech/pm2/commit/99d9224e940d119a1ad5b241b4fc4e0db7c830ed\"\u003ehttps://github.com/Unitech/pm2/commit/99d9224e940d119a1ad5b241b4fc4e0db7c830ed\u003c/a\u003e @\u003cbr /\u003e\nwebdiscus\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace chalk with ansis by \u003ca href=\"https://github.com/webdiscus\"\u003e\u003ccode\u003e@​webdiscus\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5976\"\u003e#5976\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5247\"\u003e#5247\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.5\u003c/h2\u003e\n\u003ch1\u003e6.0.5\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBun support - Fixes \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5893\"\u003e#5893\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5774\"\u003e#5774\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5682\"\u003e#5682\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5675\"\u003e#5675\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5777\"\u003e#5777\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDisable git parsing by default \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5909\"\u003e#5909\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/2182\"\u003e#2182\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5801\"\u003e#5801\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5051\"\u003e#5051\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5696\"\u003e#5696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd WEBP content type for pm2 serve \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5900\"\u003e#5900\u003c/a\u003e \u003ca href=\"https://github.com/tbo47\"\u003e\u003ccode\u003e@​tbo47\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable PM2 module update from tarball \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5906\"\u003e#5906\u003c/a\u003e \u003ca href=\"https://github.com/AYOKINYA\"\u003e\u003ccode\u003e@​AYOKINYA\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix treekil on FreeBSD \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5896\"\u003e#5896\u003c/a\u003e \u003ca href=\"https://github.com/skeyby\"\u003e\u003ccode\u003e@​skeyby\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix allowing to update namespaced pm2 NPM module (\u003ccode\u003e@​org/module-name\u003c/code\u003e) \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5915\"\u003e#5915\u003c/a\u003e \u003ca href=\"https://github.com/endelendel\"\u003e\u003ccode\u003e@​endelendel\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.4.2\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Unitech/pm2/blob/master/CHANGELOG.md\"\u003epm2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e6.0.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed version of \u003ccode\u003e@​pm2/pm2-version-check\u003c/code\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6055\"\u003e#6055\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCVE-2025-64718 Update js-yaml\u003c/li\u003e\n\u003cli\u003ereplace fs.R_OK with fs.constants.T_OK \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6012\"\u003e#6012\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6019\"\u003e#6019\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix blessed package import\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6037\"\u003e#6037\u003c/a\u003e Drop npm-shrinkwrap in favor of fixed dependencies versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5577\"\u003e#5577\u003c/a\u003e fix pm2 monit crash\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6034\"\u003e#6034\u003c/a\u003e replace package-lock.json by npm-shrinkwrap.json\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5915\"\u003e#5915\u003c/a\u003e fix allowing to update namespaced pm2 NPM module (\u003ccode\u003e@​org/module-name\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erevert \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5971\"\u003e#5971\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6031\"\u003e#6031\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdates all typescript definitions\u003c/li\u003e\n\u003cli\u003eupgrade github ci workflows\u003c/li\u003e\n\u003cli\u003eupgrade mocha dep and adapt tests\u003c/li\u003e\n\u003cli\u003ebump packages\u003c/li\u003e\n\u003cli\u003efix:Potential ReDoS Vulnerability or Inefficient Regular Expression in Project: Need for Assessment and Mitigation \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5971\"\u003e#5971\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: package-lock update\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: ansis-node10 \u003ca href=\"https://github.com/Unitech/pm2/commit/99d9224e940d119a1ad5b241b4fc4e0db7c830ed\"\u003ehttps://github.com/Unitech/pm2/commit/99d9224e940d119a1ad5b241b4fc4e0db7c830ed\u003c/a\u003e \u003ca href=\"https://github.com/webdiscus\"\u003e\u003ccode\u003e@​webdiscus\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace chalk with smaller alternative by \u003ca href=\"https://github.com/webdiscus\"\u003e\u003ccode\u003e@​webdiscus\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBun support - Fixes \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5893\"\u003e#5893\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5774\"\u003e#5774\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5682\"\u003e#5682\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5675\"\u003e#5675\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5777\"\u003e#5777\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDisable git parsing by default \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5909\"\u003e#5909\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/2182\"\u003e#2182\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5801\"\u003e#5801\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5051\"\u003e#5051\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5696\"\u003e#5696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd WEBP content type for pm2 serve \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5900\"\u003e#5900\u003c/a\u003e \u003ca href=\"https://github.com/tbo47\"\u003e\u003ccode\u003e@​tbo47\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable PM2 module update from tarball \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5906\"\u003e#5906\u003c/a\u003e \u003ca href=\"https://github.com/AYOKINYA\"\u003e\u003ccode\u003e@​AYOKINYA\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/ff1ca974afada8730aa55f8ed1df40e700cedbcb\"\u003e\u003ccode\u003eff1ca97\u003c/code\u003e\u003c/a\u003e pm2@6.0.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/34e6c013007b46010374c77e0617efc1ca0725c2\"\u003e\u003ccode\u003e34e6c01\u003c/code\u003e\u003c/a\u003e CVE-2025-64718 Update js-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/4c8b7332731c8fec6baa51c8b0ebdc5a4b89ad4f\"\u003e\u003ccode\u003e4c8b733\u003c/code\u003e\u003c/a\u003e replace fs.R_OK with fs.constants.T_OK \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6012\"\u003e#6012\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6019\"\u003e#6019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/6edb9c09b138ffbf5644926fc33d666eea11520e\"\u003e\u003ccode\u003e6edb9c0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6055\"\u003e#6055\u003c/a\u003e from d-oliveros/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/13ab5f4c92d4370194748d1f81223fa410597907\"\u003e\u003ccode\u003e13ab5f4\u003c/code\u003e\u003c/a\u003e Fixed version of \u003ccode\u003e@​pm2/pm2-version-check\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/2c444715534a547fab5c7a6eb5819e6cd71e8714\"\u003e\u003ccode\u003e2c44471\u003c/code\u003e\u003c/a\u003e pm2@6.0.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/d6f299d9e384b0a04fff8f8103ffbe64d942af42\"\u003e\u003ccode\u003ed6f299d\u003c/code\u003e\u003c/a\u003e pm2@6.0.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/5ff07ee22ed98fa2c28d4ae04b7d4c6512524f19\"\u003e\u003ccode\u003e5ff07ee\u003c/code\u003e\u003c/a\u003e update package-lock.json\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/0b5d575e320820c3bd9ed5d6b5b2d3e03ed2ce46\"\u003e\u003ccode\u003e0b5d575\u003c/code\u003e\u003c/a\u003e debug@4.4.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/4c309aa3a8b73e861699fb64ca6ca931a33000e8\"\u003e\u003ccode\u003e4c309aa\u003c/code\u003e\u003c/a\u003e use forked blessed \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5577\"\u003e#5577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Unitech/pm2/compare/v5.4.0...v6.0.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 5.2.11 to 5.4.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.4.21\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v5.4.21/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev5.4.20\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/ca88ed7398288ce0c60176ac9a6392f10654c67c/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev5.4.19\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v5.4.19/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/v5.4.21/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.21 (2025-10-20)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(dev): trim trailing slash before \u003ccode\u003eserver.fs.deny\u003c/code\u003e check (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20968\"\u003e#20968\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20970\"\u003e#20970\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/cad1d31d0635dd8fd4ddfe6e5a92eb9ff13cd06c\"\u003ecad1d31\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20968\"\u003e#20968\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20970\"\u003e#20970\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update CHANGELOG (\u003ca href=\"https://github.com/vitejs/vite/commit/ca88ed7398288ce0c60176ac9a6392f10654c67c\"\u003eca88ed7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.20 (2025-09-08)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: apply \u003ccode\u003efs.strict\u003c/code\u003e check to HTML files (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20736\"\u003e#20736\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/482000f57f56fe6ff2e905305100cfe03043ddea\"\u003e482000f\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20736\"\u003e#20736\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: port sirv@3.0.2 changes to sirv@2.0.4 (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20737\"\u003e#20737\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/4f1c35bcbb5830290c694aa14b6789e07450f069\"\u003e4f1c35b\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20737\"\u003e#20737\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.19 (2025-04-30)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19965\"\u003e#19965\u003c/a\u003e, check static serve file inside sirv (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19966\"\u003e#19966\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/766947e7cbf1cdd07df9737394e8c870401b78b0\"\u003e766947e\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19965\"\u003e#19965\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19966\"\u003e#19966\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.18 (2025-04-10)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19830\"\u003e#19830\u003c/a\u003e, reject requests with \u003ccode\u003e#\u003c/code\u003e in request-target (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19831\"\u003e#19831\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/823675baff2bd6809c74ba2d9acca0327923a54f\"\u003e823675b\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19830\"\u003e#19830\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19831\"\u003e#19831\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.17 (2025-04-03)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19782\"\u003e#19782\u003c/a\u003e, fs check with svg and relative paths (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19784\"\u003e#19784\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/84b2b46ed129be8215108e789a90adbb33a9c42c\"\u003e84b2b46\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19782\"\u003e#19782\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19784\"\u003e#19784\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.16 (2025-03-31)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19761\"\u003e#19761\u003c/a\u003e, fs check in transform middleware (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19762\"\u003e#19762\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/b627c50d359f3bd9b602408fbbf462cf4a2f019c\"\u003eb627c50\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19761\"\u003e#19761\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19762\"\u003e#19762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.15 (2025-03-24)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19702\"\u003e#19702\u003c/a\u003e, fs raw query with query separators (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19703\"\u003e#19703\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/807d7f06d33ab49c48a2a3501da3eea1906c0d41\"\u003e807d7f0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19702\"\u003e#19702\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19703\"\u003e#19703\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.14 (2025-01-21)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003epreview.allowedHosts\u003c/code\u003e with specific values was not respected (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19246\"\u003e#19246\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/9df6e6beabf0d18988ec13b8b742d2aba29662f9\"\u003e9df6e6b\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19246\"\u003e#19246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: allow CORS from loopback addresses by default (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19249\"\u003e#19249\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/7d1699ccf673e2790704756d89d2e1e4ee478fb4\"\u003e7d1699c\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19249\"\u003e#19249\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/adce3c22c64cc9d44cc8f45cc92b543e3e4bf385\"\u003e\u003ccode\u003eadce3c2\u003c/code\u003e\u003c/a\u003e release: v5.4.21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/cad1d31d0635dd8fd4ddfe6e5a92eb9ff13cd06c\"\u003e\u003ccode\u003ecad1d31\u003c/code\u003e\u003c/a\u003e fix(dev): trim trailing slash before \u003ccode\u003eserver.fs.deny\u003c/code\u003e check (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20968\"\u003e#20968\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20970\"\u003e#20970\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/ca88ed7398288ce0c60176ac9a6392f10654c67c\"\u003e\u003ccode\u003eca88ed7\u003c/code\u003e\u003c/a\u003e chore: update CHANGELOG\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/997700f01c7199daf7330d33a7fd3a43b2e9e3ba\"\u003e\u003ccode\u003e997700f\u003c/code\u003e\u003c/a\u003e release: v5.4.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/482000f57f56fe6ff2e905305100cfe03043ddea\"\u003e\u003ccode\u003e482000f\u003c/code\u003e\u003c/a\u003e fix: apply \u003ccode\u003efs.strict\u003c/code\u003e check to HTML files (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20736\"\u003e#20736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/80a333a23103ced0442d4463d1191433d90f5e19\"\u003e\u003ccode\u003e80a333a\u003c/code\u003e\u003c/a\u003e release: v5.4.19\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/766947e7cbf1cdd07df9737394e8c870401b78b0\"\u003e\u003ccode\u003e766947e\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19965\"\u003e#19965\u003c/a\u003e, check static serve file inside sirv (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19966\"\u003e#19966\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/731b77d19d36f5682a5441b49cb2f6473389ad99\"\u003e\u003ccode\u003e731b77d\u003c/code\u003e\u003c/a\u003e release: v5.4.18\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/823675baff2bd6809c74ba2d9acca0327923a54f\"\u003e\u003ccode\u003e823675b\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19830\"\u003e#19830\u003c/a\u003e, reject requests with \u003ccode\u003e#\u003c/code\u003e in request-target (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19831\"\u003e#19831\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/0a2518a98d2354c61ee8ef51f7d00fa92aebb511\"\u003e\u003ccode\u003e0a2518a\u003c/code\u003e\u003c/a\u003e release: v5.4.17\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vitejs/vite/commits/v5.4.21/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vitest` from 1.6.0 to 1.6.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitest-dev/vitest/releases\"\u003evitest's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.1\u003c/h2\u003e\n\u003cp\u003eThis release includes security patches for:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitest-dev/vitest/security/advisories/GHSA-9crc-q9x8-hgqq\"\u003eRemote Code Execution when accessing a malicious website while Vitest API server is listening | CVE-2025-24964\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e   🐞 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport \u003ca href=\"https://redirect.github.com/vitest-dev/vitest/issues/7317\"\u003evitest-dev/vitest#7317\u003c/a\u003e to v1 -  by \u003ca href=\"https://github.com/hi-ogawa\"\u003e\u003ccode\u003e@​hi-ogawa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/vitest-dev/vitest/pull/7319\"\u003evitest-dev/vitest#7319\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/vitest-dev/vitest/compare/v1.6.0...v1.6.1\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitest-dev/vitest/commit/017e1ee6c66179568b758b4d1e1796f551dc1366\"\u003e\u003ccode\u003e017e1ee\u003c/code\u003e\u003c/a\u003e chore: release v1.6.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitest-dev/vitest/commit/7ce9fbb4972d45c6fd34c843645ef6f549bbb241\"\u003e\u003ccode\u003e7ce9fbb\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/7317\"\u003e#7317\u003c/a\u003e to v1 (\u003ca href=\"https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/7319\"\u003e#7319\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/vitest-dev/vitest/commits/v1.6.1/packages/vitest\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.24.5 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `base-x` from 3.0.9 to 3.0.11\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/043a888a9bae09bc4b40500e37792e2c6398e9f2\"\u003e\u003ccode\u003e043a888\u003c/code\u003e\u003c/a\u003e 3.0.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/2705dddd2565b455641985974b534291d8defb31\"\u003e\u003ccode\u003e2705ddd\u003c/code\u003e\u003c/a\u003e [backport 3.x] Prohibit char codes that would overflow the \u003ccode\u003eBASE_MAP\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/3d43c0e16bfbc045a0a8bb6423e6e336df81b512\"\u003e\u003ccode\u003e3d43c0e\u003c/code\u003e\u003c/a\u003e 3.0.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/0a3544695fa6800649a8b78ed46cece61bcdbbe5\"\u003e\u003ccode\u003e0a35446\u003c/code\u003e\u003c/a\u003e Improve decoding performance\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/cryptocoinjs/base-x/compare/v3.0.9...v3.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cipher-base` from 1.0.4 to 1.0.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/browserify/cipher-base/blob/master/CHANGELOG.md\"\u003ecipher-base's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.6...v1.0.7\"\u003ev1.0.7\u003c/a\u003e - 2025-09-24\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003eto-buffer\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/fd1e5eeafccbc8eaa827ee6b9b60c14608aa784f\"\u003e\u003ccode\u003efd1e5ee\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/08ba8034223a53d300b7dccf33d8f14e52379a34\"\u003e\u003ccode\u003e08ba803\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.5...v1.0.6\"\u003ev1.0.6\u003c/a\u003e - 2024-11-26\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] io.js 3.0 - Node.js 5.3 typed array support \u003ca href=\"https://github.com/browserify/cipher-base/commit/b7ddd2ac24e65cc47befc1e0eb5026422f8ab037\"\u003e\u003ccode\u003eb7ddd2a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.4...v1.0.5\"\u003ev1.0.5\u003c/a\u003e - 2024-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] standard -\u0026gt; eslint, make test dir, etc \u003ca href=\"https://github.com/browserify/cipher-base/commit/ae02fd6624c41ac4ac18077be797111d1955bc76\"\u003e\u003ccode\u003eae02fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] migrate from travis to GHA \u003ca href=\"https://github.com/browserify/cipher-base/commit/66387d71461287ad9067bb1bcbfdc47403a33ee7\"\u003e\u003ccode\u003e66387d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix package.json indentation \u003ca href=\"https://github.com/browserify/cipher-base/commit/5c02918ac58c875ed36913c2dc3e1043f4d1c99c\"\u003e\u003ccode\u003e5c02918\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] return valid values on multi-byte-wide TypedArray input \u003ca href=\"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294\"\u003e\u003ccode\u003e8fd1364\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/88dc806806d3dc41444dbf639c87c00f82c949b3\"\u003e\u003ccode\u003e88dc806\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003enpmignore\u003c/code\u003e and \u003ccode\u003esafe-publish-latest\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/7a137d749ce7ea7ea56b9c096844b1b8ab723f61\"\u003e\u003ccode\u003e7a137d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly apps should have lockfiles \u003ca href=\"https://github.com/browserify/cipher-base/commit/42528f291db16bf2e7d5f831ebe2ad87fd0b1f42\"\u003e\u003ccode\u003e42528f2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003einherits\u003c/code\u003e, \u003ccode\u003esafe-buffer\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/0e7a2d9a33a391e82fa9cf512d6e25cc91ab8613\"\u003e\u003ccode\u003e0e7a2d9\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add missing \u003ccode\u003eengines.node\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/f2dc13e47bbcf3c873db9a9e0f83e5f29d0783fe\"\u003e\u003ccode\u003ef2dc13e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/00567180c846dd3db3848c9223991c58a0d5490c\"\u003e\u003ccode\u003e0056718\u003c/code\u003e\u003c/a\u003e v1.0.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/fd1e5eeafccbc8eaa827ee6b9b60c14608aa784f\"\u003e\u003ccode\u003efd1e5ee\u003c/code\u003e\u003c/a\u003e [Refactor] use \u003ccode\u003eto-buffer\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/08ba8034223a53d300b7dccf33d8f14e52379a34\"\u003e\u003ccode\u003e08ba803\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/f5249f94611506ef35a8be4d48a3fc5ecf1fac63\"\u003e\u003ccode\u003ef5249f9\u003c/code\u003e\u003c/a\u003e v1.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/b7ddd2ac24e65cc47befc1e0eb5026422f8ab037\"\u003e\u003ccode\u003eb7ddd2a\u003c/code\u003e\u003c/a\u003e [Fix] io.js 3.0 - Node.js 5.3 typed array support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/f03cebfdad1cba1d56614c58affa303b0fa2a43e\"\u003e\u003ccode\u003ef03cebf\u003c/code\u003e\u003c/a\u003e v1.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/88dc806806d3dc41444dbf639c87c00f82c949b3\"\u003e\u003ccode\u003e88dc806\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/7a137d749ce7ea7ea56b9c096844b1b8ab723f61\"\u003e\u003ccode\u003e7a137d7\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003enpmignore\u003c/code\u003e and \u003ccode\u003esafe-publish-latest\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/5c02918ac58c875ed36913c2dc3e1043f4d1c99c\"\u003e\u003ccode\u003e5c02918\u003c/code\u003e\u003c/a\u003e [meta] fix package.json indentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294\"\u003e\u003ccode\u003e8fd1364\u003c/code\u003e\u003c/a\u003e [Fix] return valid values on multi-byte-wide TypedArray input\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/crypto-browserify/cipher-base/compare/v1.0.4...v1.0.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for cipher-base since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diff` from 4.0.2 to 4.0.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.4 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 4.0.2 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev4.0.3 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/f06f3e4cacad5955caf891a8a02c5bb1c954bcb5\"\u003e\u003ccode\u003ef06f3e4\u003c/code\u003e\u003c/a\u003e v4.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/0179a484ffaec7c8d5d6b69d8c3905473383de75\"\u003e\u003ccode\u003e0179a48\u003c/code\u003e\u003c/a\u003e v4.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/4568cae5ae7646962bf3c5641907d1fb5af90683\"\u003e\u003ccode\u003e4568cae\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/4de0ffa13ad51db7a27567c2b870fb4e43f0814a\"\u003e\u003ccode\u003e4de0ffa\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v4.0.2...v4.0.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~explodingcabbage\"\u003eexplodingcabbage\u003c/a\u003e, a new releaser for diff since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `esbuild` from 0.20.2 to 0.21.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/releases\"\u003eesbuild's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.27.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ePreserve URL fragments in data URLs (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4370\"\u003e#4370\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eConsider the following HTML, CSS, and SVG:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eindex.html\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"html\"\u003e\u003ccode\u003e\u0026lt;!DOCTYPE html\u0026gt;\n\u0026lt;html\u0026gt;\n  \u0026lt;head\u0026gt;\u0026lt;link rel=\u0026quot;stylesheet\u0026quot; href=\u0026quot;icons.css\u0026quot;\u0026gt;\u0026lt;/head\u0026gt;\n  \u0026lt;body\u0026gt;\u0026lt;div class=\u0026quot;triangle\u0026quot;\u0026gt;\u0026lt;/div\u0026gt;\u0026lt;/body\u0026gt;\n\u0026lt;/html\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eicons.css\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e.triangle {\n  width: 10px;\n  height: 10px;\n  background: currentColor;\n  clip-path: url(./triangle.svg#x);\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003etriangle.svg\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"xml\"\u003e\u003ccode\u003e\u0026lt;svg xmlns=\u0026quot;http://www.w3.org/2000/svg\u0026quot;\u0026gt;\n  \u0026lt;defs\u0026gt;\n    \u0026lt;clipPath id=\u0026quot;x\u0026quot;\u0026gt;\n      \u0026lt;path d=\u0026quot;M0 0H10V10Z\u0026quot;/\u0026gt;\n    \u0026lt;/clipPath\u0026gt;\n  \u0026lt;/defs\u0026gt;\n\u0026lt;/svg\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThe CSS uses a URL fragment (the \u003ccode\u003e#x\u003c/code\u003e) to reference the \u003ccode\u003eclipPath\u003c/code\u003e element in the SVG file. Previously esbuild's CSS bundler didn't preserve the URL fragment when bundling the SVG using the \u003ccode\u003edataurl\u003c/code\u003e loader, which broke the bundled CSS. With this release, esbuild will now preserve the URL fragment in the bundled CSS:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e/* icons.css */\n.triangle {\n  width: 10px;\n  height: 10px;\n  background: currentColor;\n  clip-path: url('data:image/svg+xml,\u0026lt;svg xmlns=\u0026quot;http://www.w3.org/2000/svg\u0026quot;\u0026gt;\u0026lt;defs\u0026gt;\u0026lt;clipPath id=\u0026quot;x\u0026quot;\u0026gt;\u0026lt;path d=\u0026quot;M0 0H10V10Z\u0026quot;/\u0026gt;\u0026lt;/clipPath\u0026gt;\u0026lt;/defs\u0026gt;\u0026lt;/svg\u0026gt;#x');\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/blob/main/CHANGELOG-2024.md\"\u003eesbuild's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog: 2024\u003c/h1\u003e\n\u003cp\u003eThis changelog documents all esbuild versions published in the year 2024 (versions 0.19.12 through 0.24.2).\u003c/p\u003e\n\u003ch2\u003e0.24.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix regression with \u003ccode\u003e--define\u003c/code\u003e and \u003ccode\u003eimport.meta\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4010\"\u003e#4010\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4012\"\u003e#4012\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/pull/4013\"\u003e#4013\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe previous change in version 0.24.1 to use a more expression-like parser for \u003ccode\u003edefine\u003c/code\u003e values to allow quoted property names introduced a regression that removed the ability to use \u003ccode\u003e--define:import.meta=...\u003c/code\u003e. Even though \u003ccode\u003eimport\u003c/code\u003e is normally a keyword that can't be used as an identifier, ES modules special-case the \u003ccode\u003eimport.meta\u003c/code\u003e expression to behave like an identifier anyway. This change fixes the regression.\u003c/p\u003e\n\u003cp\u003eThis fix was contributed by \u003ca href=\"https://github.com/sapphi-red\"\u003e\u003ccode\u003e@​sapphi-red\u003c/code\u003e\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.24.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAllow \u003ccode\u003ees2024\u003c/code\u003e as a target in \u003ccode\u003etsconfig.json\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4004\"\u003e#4004\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eTypeScript recently \u003ca href=\"https://devblogs.microsoft.com/typescript/announcing-typescript-5-7/#support-for---target-es2024-and---lib-es2024\"\u003eadded \u003ccode\u003ees2024\u003c/code\u003e\u003c/a\u003e as a compilation target, so esbuild now supports this in the \u003ccode\u003etarget\u003c/code\u003e field of \u003ccode\u003etsconfig.json\u003c/code\u003e files, such as in the following configuration file:\u003c/p\u003e\n\u003cpre lang=\"json\"\u003e\u003ccode\u003e{\n  \u0026quot;compilerOptions\u0026quot;: {\n    \u0026quot;target\u0026quot;: \u0026quot;ES2024\u0026quot;\n  }\n}\n\u003c/code...\n\n_Description has been truncated_","html_url":"https://github.com/JSTONE1111/x-app-template/pull/16","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/JSTONE1111%2Fx-app-template/issues/16","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/16/packages"},{"uuid":"3985100140","node_id":"PR_kwDOOz1n5s7GAUqv","number":10,"state":"closed","title":"Bump the npm_and_yarn group across 13 directories with 29 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-25T00:40:37.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-24T18:05:05.000Z","updated_at":"2026-02-25T00:40:39.000Z","time_to_close":23732,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":29,"packages":[{"name":"axios","old_version":"0.27.2","new_version":"0.30.3","repository_url":"https://github.com/axios/axios"},{"name":"dompurify","old_version":"2.5.8","new_version":"3.2.4","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"image-size","old_version":"1.2.0","new_version":"1.2.1","repository_url":"https://github.com/image-size/image-size"},{"name":"langchain","old_version":"0.1.37","new_version":"0.2.19","repository_url":"https://github.com/langchain-ai/langchainjs"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"nodemailer","old_version":"6.9.16","new_version":"7.0.11","repository_url":"https://github.com/nodemailer/nodemailer"},{"name":"private-ip","old_version":"2.3.4","new_version":"3.0.2","repository_url":"https://github.com/frenchbread/private-ip"},{"name":"typeorm","old_version":"0.3.20","new_version":"0.3.26","repository_url":"https://github.com/typeorm/typeorm"},{"name":"webpack","old_version":"5.97.1","new_version":"5.104.1","repository_url":"https://github.com/webpack/webpack"},{"name":"@babel/runtime","old_version":"7.26.0","new_version":"7.26.10","repository_url":"https://github.com/babel/babel"},{"name":"webpack-dev-server","old_version":"4.15.2","new_version":"5.2.1","repository_url":"https://github.com/webpack/webpack-dev-server"},{"name":"fast-xml-parser","old_version":"4.5.1","new_version":"5.3.6","repository_url":"https://github.com/NaturalIntelligence/fast-xml-parser"},{"name":"markdown-it","old_version":"13.0.2","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"next","old_version":"13.5.8","new_version":"15.5.10","repository_url":"https://github.com/vercel/next.js"},{"name":"@smithy/config-resolver","old_version":"4.0.1","new_version":"4.4.8","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"bn.js","old_version":"4.12.1","new_version":"4.12.3","repository_url":"https://github.com/indutny/bn.js"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"http-proxy-middleware","old_version":"2.0.7","new_version":"2.0.9","repository_url":"https://github.com/chimurai/http-proxy-middleware"},{"name":"jws","old_version":"3.2.2","new_version":"3.2.3","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"min-document","old_version":"2.19.0","new_version":"2.19.2","repository_url":"https://github.com/Raynos/min-document"},{"name":"node-forge","old_version":"1.3.1","new_version":"1.3.3","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"pbkdf2","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/browserify/pbkdf2"},{"name":"qs","old_version":"6.5.3","new_version":"6.5.5","repository_url":"https://github.com/ljharb/qs"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"tar-fs","old_version":"2.1.2","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [axios](https://github.com/axios/axios) | `0.27.2` | `0.30.3` |\n| [dompurify](https://github.com/cure53/DOMPurify) | `2.5.8` | `3.2.4` |\n| [image-size](https://github.com/image-size/image-size) | `1.2.0` | `1.2.1` |\n| [langchain](https://github.com/langchain-ai/langchainjs) | `0.1.37` | `0.2.19` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [nodemailer](https://github.com/nodemailer/nodemailer) | `6.9.16` | `7.0.11` |\n| [private-ip](https://github.com/frenchbread/private-ip) | `2.3.4` | `3.0.2` |\n| [typeorm](https://github.com/typeorm/typeorm) | `0.3.20` | `0.3.26` |\n| [webpack](https://github.com/webpack/webpack) | `5.97.1` | `5.104.1` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.26.0` | `7.26.10` |\n| [webpack-dev-server](https://github.com/webpack/webpack-dev-server) | `4.15.2` | `5.2.1` |\n| [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) | `4.5.1` | `5.3.6` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `13.0.2` | `14.1.1` |\n| [next](https://github.com/vercel/next.js) | `13.5.8` | `15.5.10` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `4.0.1` | `4.4.8` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [bn.js](https://github.com/indutny/bn.js) | `4.12.1` | `4.12.3` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) | `2.0.7` | `2.0.9` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [min-document](https://github.com/Raynos/min-document) | `2.19.0` | `2.19.2` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [pbkdf2](https://github.com/browserify/pbkdf2) | `3.1.2` | `3.1.5` |\n| [qs](https://github.com/ljharb/qs) | `6.5.3` | `6.5.5` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.2` | `2.1.4` |\n\nBumps the npm_and_yarn group with 5 updates in the /packages/api directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [axios](https://github.com/axios/axios) | `0.27.2` | `1.13.5` |\n| [dompurify](https://github.com/cure53/DOMPurify) | `2.5.8` | `3.3.1` |\n| [langchain](https://github.com/langchain-ai/langchainjs) | `0.1.37` | `1.2.26` |\n| [nodemailer](https://github.com/nodemailer/nodemailer) | `6.10.1` | `8.0.1` |\n| [private-ip](https://github.com/frenchbread/private-ip) | `2.3.4` | `3.0.2` |\n\nBumps the npm_and_yarn group with 1 update in the /packages/content-fetch directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /packages/content-handler directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /packages/discover directory: [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser).\nBumps the npm_and_yarn group with 1 update in the /packages/pdf-handler directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /packages/rule-handler directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /packages/text-to-speech directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 2 updates in the /packages/web directory: [markdown-it](https://github.com/markdown-it/markdown-it) and [next](https://github.com/vercel/next.js).\nBumps the npm_and_yarn group with 6 updates in the /pkg/admin directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [typeorm](https://github.com/typeorm/typeorm) | `0.2.34` | `0.3.26` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.14.6` | `7.28.6` |\n| [diff](https://github.com/kpdecker/jsdiff) | `4.0.2` | `4.0.4` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n\nBumps the npm_and_yarn group with 2 updates in the /pkg/bull-queue-admin directory: [lodash](https://github.com/lodash/lodash) and [js-yaml](https://github.com/nodeca/js-yaml).\nBumps the npm_and_yarn group with 3 updates in the /pkg/extension directory: [lodash](https://github.com/lodash/lodash), [webpack](https://github.com/webpack/webpack) and [jws](https://github.com/brianloveswords/node-jws).\nBumps the npm_and_yarn group with 2 updates in the /pkg/extension-v3 directory: [nanoid](https://github.com/ai/nanoid) and [webpack](https://github.com/webpack/webpack).\n\nUpdates `axios` from 0.27.2 to 0.30.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease notes - v0.30.3\u003c/h2\u003e\n\u003cp\u003eThis is a critical security maintenance release for the v0.x branch. It addresses a high-priority vulnerability involving prototype pollution that could lead to a Denial of Service (DoS).\u003c/p\u003e\n\u003cp\u003eRecommendation: All users currently on the 0.x release line should upgrade to this version immediately to ensure environment stability.\u003c/p\u003e\n\u003ch2\u003e🛡️ Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBackport: Fix DoS via \u003cstrong\u003eproto\u003c/strong\u003e key in merge config\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003ePatched a vulnerability where specifically crafted configuration objects using the \u003cstrong\u003eproto\u003c/strong\u003e key could cause a Denial of Service during the merge process. - \u003cem\u003eby \u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e in [PR \u003ca href=\"https://redirect.github.com/axios/axios/issues/7388\"\u003e#7388\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/axios/axios/pull/7388\"\u003eaxios/axios#7388\u003c/a\u003e)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚙️ Maintenance \u0026amp; CI\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Infrastructure Update\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated Continuous Integration workflows for the v0.x branch to maintain long-term support and build reliability. - \u003cem\u003eby \u003ca href=\"https://github.com/jasonsaayman\"\u003e\u003ccode\u003e@​jasonsaayman\u003c/code\u003e\u003c/a\u003e in [PR \u003ca href=\"https://redirect.github.com/axios/axios/issues/7407\"\u003e#7407\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/axios/axios/pull/7407\"\u003eaxios/axios#7407\u003c/a\u003e)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cp\u003eConfiguration Merging Behavior:\u003c/p\u003e\n\u003cp\u003eAs part of the security fix, Axios now restricts the merging of the \u003cstrong\u003eproto\u003c/strong\u003e key within configuration objects. If your codebase relies on unconventional deep-merging patterns that target the object prototype via Axios config, those operations will now be blocked. This is a necessary change to prevent prototype pollution.\u003c/p\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.2...v0.30.3\"\u003ev0.30.2...v0.30.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.30.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u003ccode\u003emaxContentLength\u003c/code\u003e vulnerability fix to v0.x by \u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/7034\"\u003eaxios/axios#7034\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/axios/axios/pull/7034\"\u003eaxios/axios#7034\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.1...v0.30.2\"\u003ehttps://github.com/axios/axios/compare/v0.30.1...v0.30.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.30.1\u003c/h2\u003e\n\u003ch2\u003eRelease notes:\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump form-data from 4.0.0 to 4.0.4 for v0.x by \u003ca href=\"https://github.com/wolandec\"\u003e\u003ccode\u003e@​wolandec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6978\"\u003eaxios/axios#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wolandec\"\u003e\u003ccode\u003e@​wolandec\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6978\"\u003eaxios/axios#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.0...v0.30.1\"\u003ehttps://github.com/axios/axios/compare/v0.30.0...v0.30.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.30.0\u003c/h2\u003e\n\u003ch2\u003eRelease notes:\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: modify log while request is aborted by \u003ca href=\"https://github.com/mori5321\"\u003e\u003ccode\u003e@​mori5321\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/4917\"\u003eaxios/axios#4917\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update CHANGELOG.md for v0.x by \u003ca href=\"https://github.com/TehZarathustra\"\u003e\u003ccode\u003e@​TehZarathustra\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6271\"\u003eaxios/axios#6271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: modify upgrade guide for 0.28.1's breaking change by \u003ca href=\"https://github.com/nafeger\"\u003e\u003ccode\u003e@​nafeger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6787\"\u003eaxios/axios#6787\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f53bcf6c3747652c9d3811dc0bbcd3674e21567a\"\u003e\u003ccode\u003ef53bcf6\u003c/code\u003e\u003c/a\u003e chore: release 0.30.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3ddccd3bf478c8aab863f2fdd4a52461849eab45\"\u003e\u003ccode\u003e3ddccd3\u003c/code\u003e\u003c/a\u003e chore: remove publish as this wont work\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9ef39d07245286df678c1a16e7b5769610ba8326\"\u003e\u003ccode\u003e9ef39d0\u003c/code\u003e\u003c/a\u003e chore: try with npm token\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4775de601df704d8d4e7336a57b08a2e21de8ff4\"\u003e\u003ccode\u003e4775de6\u003c/code\u003e\u003c/a\u003e chore: fix version scheme\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f96f26b2014404534424e765b83a1dbbd8cb091f\"\u003e\u003ccode\u003ef96f26b\u003c/code\u003e\u003c/a\u003e chore: fix issues with using replace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ead45c20b05ab32c26cb63d0f7a20e8b123d9f68\"\u003e\u003ccode\u003eead45c2\u003c/code\u003e\u003c/a\u003e chore: update the publish workflow to run on tag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8119265e6ce71898d19448d30356789cccc2de56\"\u003e\u003ccode\u003e8119265\u003c/code\u003e\u003c/a\u003e chore: tag version as legacy on v0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/995498519881c23ba97b42dda16bcadc0e4791a7\"\u003e\u003ccode\u003e9954985\u003c/code\u003e\u003c/a\u003e chore: dispatch for first time\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3f8b70fdfc7903aa137ea4f6539cd00f5df97afb\"\u003e\u003ccode\u003e3f8b70f\u003c/code\u003e\u003c/a\u003e chore: final rename\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/c66558430e71cf0c113a2969355cde25cb159fff\"\u003e\u003ccode\u003ec665584\u003c/code\u003e\u003c/a\u003e chore: revert naming\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v0.27.2...v0.30.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dompurify` from 2.5.8 to 3.2.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cure53/DOMPurify/releases\"\u003edompurify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDOMPurify 3.2.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a conditional and config dependent mXSS-style \u003ca href=\"https://nsysean.github.io/posts/dompurify-323-bypass/\"\u003ebypass\u003c/a\u003e reported by \u003ca href=\"https://github.com/nsysean\"\u003e\u003ccode\u003e@​nsysean\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded a new feature to allow specific hook removal, thanks \u003ca href=\"https://github.com/davecardwell\"\u003e\u003ccode\u003e@​davecardwell\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003cem\u003epurify.js\u003c/em\u003e and \u003cem\u003epurify.min.js\u003c/em\u003e to exports, thanks \u003ca href=\"https://github.com/Aetherinox\"\u003e\u003ccode\u003e@​Aetherinox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded better logic in case no window object is president, thanks \u003ca href=\"https://github.com/yehuya\"\u003e\u003ccode\u003e@​yehuya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated some dependencies called out by dependabot\u003c/li\u003e\n\u003cli\u003eUpdated license files etc to show the correct year\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.2.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed two conditional sanitizer bypasses discovered by \u003ca href=\"https://github.com/parrot409\"\u003e\u003ccode\u003e@​parrot409\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://x.com/slonser_\"\u003e\u003ccode\u003e@​Slonser\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated the attribute clobbering checks to prevent future bypasses, thanks \u003ca href=\"https://github.com/parrot409\"\u003e\u003ccode\u003e@​parrot409\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a possible bypass in case a rather specific config for custom elements is set, thanks \u003ca href=\"https://github.com/yaniv-git\"\u003e\u003ccode\u003e@​yaniv-git\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed several minor issues with the type definitions, thanks again \u003ca href=\"https://github.com/reduckted\"\u003e\u003ccode\u003e@​reduckted\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a minor issue with the types reference for trusted types, thanks \u003ca href=\"https://github.com/reduckted\"\u003e\u003ccode\u003e@​reduckted\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a minor problem with the template detection regex on some systems, thanks \u003ca href=\"https://github.com/svdb99\"\u003e\u003ccode\u003e@​svdb99\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed several minor issues with the type definitions, thanks \u003ca href=\"https://github.com/reduckted\"\u003e\u003ccode\u003e@​reduckted\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/ghiscoding\"\u003e\u003ccode\u003e@​ghiscoding\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/asamuzaK\"\u003e\u003ccode\u003e@​asamuzaK\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/MiniDigger\"\u003e\u003ccode\u003e@​MiniDigger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with non-minified dist files and order of imports, thanks \u003ca href=\"https://github.com/reduckted\"\u003e\u003ccode\u003e@​reduckted\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded type declarations, thanks \u003ca href=\"https://github.com/reduckted\"\u003e\u003ccode\u003e@​reduckted\u003c/code\u003e\u003c/a\u003e , \u003ca href=\"https://github.com/philmayfield\"\u003e\u003ccode\u003e@​philmayfield\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/aloisklink\"\u003e\u003ccode\u003e@​aloisklink\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ssi02014\"\u003e\u003ccode\u003e@​ssi02014\u003c/code\u003e\u003c/a\u003e and others\u003c/li\u003e\n\u003cli\u003eFixed a minor issue with the handling of hooks, thanks \u003ca href=\"https://github.com/kevin-mizu\"\u003e\u003ccode\u003e@​kevin-mizu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with comment detection and possible bypasses with specific config settings, thanks \u003ca href=\"https://github.com/masatokinugawa\"\u003e\u003ccode\u003e@​masatokinugawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed several smaller typos in documentation and test \u0026amp; build files, thanks \u003ca href=\"https://github.com/christianhg\"\u003e\u003ccode\u003e@​christianhg\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded better support for Angular compiler, thanks \u003ca href=\"https://github.com/jeroen1602\"\u003e\u003ccode\u003e@​jeroen1602\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded several new attributes to HTML and SVG allow-list, thanks \u003ca href=\"https://github.com/Gigabyte5671\"\u003e\u003ccode\u003e@​Gigabyte5671\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/Rotzbua\"\u003e\u003ccode\u003e@​Rotzbua\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved the \u003ccode\u003eforeignObject\u003c/code\u003e element from the list of HTML entry-points, thanks \u003ca href=\"https://github.com/masatokinugawa\"\u003e\u003ccode\u003e@​masatokinugawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped several dependencies to be more up to date\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with the execution logic of attribute hooks to prevent bypasses, thanks \u003ca href=\"https://github.com/kevin-mizu\"\u003e\u003ccode\u003e@​kevin-mizu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with element removal leading to uncaught errors through DOM Clobbering, thanks \u003ca href=\"https://github.com/realansgar\"\u003e\u003ccode\u003e@​realansgar\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a minor problem with the bower file pointing to the wrong dist path\u003c/li\u003e\n\u003cli\u003eFixed several minor typos in docs, comments and comment blocks, thanks \u003ca href=\"https://github.com/Rotzbua\"\u003e\u003ccode\u003e@​Rotzbua\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated several development dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.1.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a minor issue with the dist paths in \u003ccode\u003ebower.js\u003c/code\u003e, thanks \u003ca href=\"https://github.com/HakumenNC\"\u003e\u003ccode\u003e@​HakumenNC\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a minor issue with sanitizing HTML coming from copy\u0026amp;paste Word content, thanks \u003ca href=\"https://github.com/kakao-bishop-cho\"\u003e\u003ccode\u003e@​kakao-bishop-cho\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.1.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with the recently implemented \u003ccode\u003eisNaN\u003c/code\u003e checks, thanks \u003ca href=\"https://github.com/tulach\"\u003e\u003ccode\u003e@​tulach\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded several new popover attributes to allow-list, thanks \u003ca href=\"https://github.com/Gigabyte5671\"\u003e\u003ccode\u003e@​Gigabyte5671\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the tests and adjusted the test runner to cover all branches\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/ec29e65f3675077c1a78e6edcab97f797f004a2e\"\u003e\u003ccode\u003eec29e65\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1062\"\u003e#1062\u003c/a\u003e from cure53/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/1c1b1838625851939d4b86436feeb3e3ccb7dbb6\"\u003e\u003ccode\u003e1c1b183\u003c/code\u003e\u003c/a\u003e chore: Preparing 3.2.4 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/d18ffcb554e0001748865da03ac75dd7829f0f02\"\u003e\u003ccode\u003ed18ffcb\u003c/code\u003e\u003c/a\u003e fix: Changed the template literal regex to avoid a config-dependent bypass\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/0d64d2b12f9ecaa28899c60aba0b9ed5072c4d93\"\u003e\u003ccode\u003e0d64d2b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1060\"\u003e#1060\u003c/a\u003e from yehuya/initializeTestImprovements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/9ad79331566e0671788b120cc1f682f4e7f33f44\"\u003e\u003ccode\u003e9ad7933\u003c/code\u003e\u003c/a\u003e tests: DOMPurify custom window tests improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/72760ca8ee425c3129420390d4c10afe698ff2fb\"\u003e\u003ccode\u003e72760ca\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1059\"\u003e#1059\u003c/a\u003e from yehuya/fixMissingWindowElement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/bc72d44b2e3cec00d8ef2427869d03cb668969fa\"\u003e\u003ccode\u003ebc72d44\u003c/code\u003e\u003c/a\u003e Fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/363a89dd3a051b72334cd4d0c867616fdc4ee40d\"\u003e\u003ccode\u003e363a89d\u003c/code\u003e\u003c/a\u003e fix: handle undefined Element in DOMPurify initialization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/f41b45df18a9666a50c1ad2662cee259230cfef4\"\u003e\u003ccode\u003ef41b45d\u003c/code\u003e\u003c/a\u003e Update LICENSE\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/b25bf26d674ff4db9074cef01fc51490cb1369a0\"\u003e\u003ccode\u003eb25bf26\u003c/code\u003e\u003c/a\u003e Update README.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cure53/DOMPurify/compare/2.5.8...3.2.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `image-size` from 1.2.0 to 1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/image-size/image-size/releases\"\u003eimage-size's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.2.1\u003c/h2\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix potential Denial of Service via specially crafted payloads in \u003ca href=\"https://github.com/image-size/image-size/commit/640a67d9e821baee4cb596def8db00627f649dfc\"\u003ehttps://github.com/image-size/image-size/commit/640a67d9e821baee4cb596def8db00627f649dfc\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/image-size/image-size/compare/v1.2.0...v1.2.1\"\u003ehttps://github.com/image-size/image-size/compare/v1.2.0...v1.2.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/image-size/image-size/commit/a4178fbb334ddb22d94cb4228ed597c24fd02e10\"\u003e\u003ccode\u003ea4178fb\u003c/code\u003e\u003c/a\u003e 1.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/image-size/image-size/commit/640a67d9e821baee4cb596def8db00627f649dfc\"\u003e\u003ccode\u003e640a67d\u003c/code\u003e\u003c/a\u003e fix potential Denial of Service via specially crafted payloads\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/image-size/image-size/compare/v1.2.0...v1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `langchain` from 0.1.37 to 0.2.19\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/d5ba68dfdb91d5f5ed701952d486667526902ece\"\u003e\u003ccode\u003ed5ba68d\u003c/code\u003e\u003c/a\u003e chore(langchain): Release 0.2.19 (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6742\"\u003e#6742\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/26f75b69b85917755b6fb1cfca8d6e003825b7a6\"\u003e\u003ccode\u003e26f75b6\u003c/code\u003e\u003c/a\u003e chore(langchain): Release 0.2.19\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/7fbae88bb5c7bbeea4d2c885981591fc9fb29467\"\u003e\u003ccode\u003e7fbae88\u003c/code\u003e\u003c/a\u003e fix(ci): Fix ci (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6741\"\u003e#6741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/87ce5607407511705cd2cad0eb4c710208aead65\"\u003e\u003ccode\u003e87ce560\u003c/code\u003e\u003c/a\u003e fix(ci): Fix esbuild tests (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6739\"\u003e#6739\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/a8ff65dea4b0e67753fa1ccaa87b9ba77fa2316a\"\u003e\u003ccode\u003ea8ff65d\u003c/code\u003e\u003c/a\u003e fix(ci): Fix cf-workers export test (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6738\"\u003e#6738\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/1010d1c2f10c876295b47bd831b6bec5136731cc\"\u003e\u003ccode\u003e1010d1c\u003c/code\u003e\u003c/a\u003e fix(ci): Fix cf exports test (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6737\"\u003e#6737\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/a0fad77d6b569e5872bd4a9d33be0c0785e538a9\"\u003e\u003ccode\u003ea0fad77\u003c/code\u003e\u003c/a\u003e fix(langchain): Fix local file store traversal issue (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6736\"\u003e#6736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/08092cdd6c2e8a443acf55e650ca0e8a185b02a9\"\u003e\u003ccode\u003e08092cd\u003c/code\u003e\u003c/a\u003e google-common[major]: Media manager (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/5835\"\u003e#5835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/6a723fa180707724412711846fa4053431f3cf41\"\u003e\u003ccode\u003e6a723fa\u003c/code\u003e\u003c/a\u003e docs: Update wording in tool choice guide (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6732\"\u003e#6732\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/630283bc5ba09fdff7a8a93da420ede313313e5c\"\u003e\u003ccode\u003e630283b\u003c/code\u003e\u003c/a\u003e docs: Fix typo in chatbot tutorial (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6730\"\u003e#6730\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/langchain-ai/langchainjs/compare/0.1.37...0.2.19\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nodemailer` from 6.9.16 to 7.0.11\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodemailer/nodemailer/releases\"\u003enodemailer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.11\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.10...v7.0.11\"\u003e7.0.11\u003c/a\u003e (2025-11-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eprevent stack overflow DoS in addressparser with deeply nested groups (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003eb61b9c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.9...v7.0.10\"\u003e7.0.10\u003c/a\u003e (2025-10-23)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncrease data URI size limit from 100KB to 50MB and preserve content type (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e28dbf3f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.8...v7.0.9\"\u003e7.0.9\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e Trying to fix release proecess by upgrading Node version in runner (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/579fce4683eb588891613a6c9a00d8092e8c62d1\"\u003e579fce4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.7...v7.0.8\"\u003e7.0.8\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e flatten nested groups per RFC 5322 (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/8f8a77c67f0ba94ddf4e16c68f604a5920fb5d26\"\u003e8f8a77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.7\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.6...v7.0.7\"\u003e7.0.7\u003c/a\u003e (2025-10-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e Fixed addressparser handling of quoted nested email addresses (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626\"\u003e1150d99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edns:\u003c/strong\u003e add memory leak prevention for DNS cache (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/0240d6795ded6d8008d102161a729f120b6d786a\"\u003e0240d67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elinter:\u003c/strong\u003e Updated eslint and created prettier formatting task (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/df13b7487e368acded35e45d0887d23c89c9177a\"\u003edf13b74\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefresh expired DNS cache on error (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1759\"\u003e#1759\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/ea0fc5a6633a3546f4b00fcf2f428e9ca732cdb6\"\u003eea0fc5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve linter errors in DNS cache tests (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3b8982c1f24508089a8757b74039000a4498b158\"\u003e3b8982c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6\"\u003e7.0.6\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md\"\u003enodemailer's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.10...v7.0.11\"\u003e7.0.11\u003c/a\u003e (2025-11-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eprevent stack overflow DoS in addressparser with deeply nested groups (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003eb61b9c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.9...v7.0.10\"\u003e7.0.10\u003c/a\u003e (2025-10-23)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncrease data URI size limit from 100KB to 50MB and preserve content type (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e28dbf3f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.8...v7.0.9\"\u003e7.0.9\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e Trying to fix release proecess by upgrading Node version in runner (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/579fce4683eb588891613a6c9a00d8092e8c62d1\"\u003e579fce4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.7...v7.0.8\"\u003e7.0.8\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e flatten nested groups per RFC 5322 (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/8f8a77c67f0ba94ddf4e16c68f604a5920fb5d26\"\u003e8f8a77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.6...v7.0.7\"\u003e7.0.7\u003c/a\u003e (2025-10-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e Fixed addressparser handling of quoted nested email addresses (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626\"\u003e1150d99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edns:\u003c/strong\u003e add memory leak prevention for DNS cache (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/0240d6795ded6d8008d102161a729f120b6d786a\"\u003e0240d67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elinter:\u003c/strong\u003e Updated eslint and created prettier formatting task (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/df13b7487e368acded35e45d0887d23c89c9177a\"\u003edf13b74\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefresh expired DNS cache on error (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1759\"\u003e#1759\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/ea0fc5a6633a3546f4b00fcf2f428e9ca732cdb6\"\u003eea0fc5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve linter errors in DNS cache tests (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3b8982c1f24508089a8757b74039000a4498b158\"\u003e3b8982c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6\"\u003e7.0.6\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eencoder:\u003c/strong\u003e avoid silent data loss by properly flushing trailing base64 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1747\"\u003e#1747\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/01ae76f2cfe991c0c3fe80170f236da60531496b\"\u003e01ae76f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehandle multiple XOAUTH2 token requests correctly (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1754\"\u003e#1754\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/dbe00286351cddf012726a41a96ae613d30a34ee\"\u003edbe0028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReDoS vulnerability in parseDataURI and _processDataUrl (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1755\"\u003e#1755\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/90b3e24d23929ebf9f4e16261049b40ee4055a39\"\u003e90b3e24\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.4...v7.0.5\"\u003e7.0.5\u003c/a\u003e (2025-07-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3d17dbec49ab3e3f0e13e62871e5534be5b99994\"\u003e\u003ccode\u003e3d17dbe\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.11 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1783\"\u003e#1783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/15879f8bd5a94fe608fd7cf1d3142de14527eadf\"\u003e\u003ccode\u003e15879f8\u003c/code\u003e\u003c/a\u003e Bumped dev dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003e\u003ccode\u003eb61b9c0\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow DoS in addressparser with deeply nested groups\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/4175e4baf92ffc4e20791a11fc0886025228a2ac\"\u003e\u003ccode\u003e4175e4b\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.10 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1776\"\u003e#1776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/d882ccfe8d37723e7017c1966608dcf8217d8a82\"\u003e\u003ccode\u003ed882ccf\u003c/code\u003e\u003c/a\u003e Merge branch 'master' of github.com:nodemailer/nodemailer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1d7e4f786bccdc3e0a1bf0140d07ce5aaf29d82a\"\u003e\u003ccode\u003e1d7e4f7\u003c/code\u003e\u003c/a\u003e Bumped deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/10bd871656b331a674feabbcfc1d6363918cb244\"\u003e\u003ccode\u003e10bd871\u003c/code\u003e\u003c/a\u003e chore: correct typo in variable name (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1773\"\u003e#1773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e\u003ccode\u003e28dbf3f\u003c/code\u003e\u003c/a\u003e fix: Increase data URI size limit from 100KB to 50MB and preserve content type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/92ae1c49e3a33767996db9ddfd04784a7b9595d7\"\u003e\u003ccode\u003e92ae1c4\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.9 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1769\"\u003e#1769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/c675d9e7e57d0d90bde7d71afb0b2739fc071233\"\u003e\u003ccode\u003ec675d9e\u003c/code\u003e\u003c/a\u003e Merge branch 'master' of github.com:nodemailer/nodemailer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v6.9.16...v7.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for nodemailer since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `private-ip` from 2.3.4 to 3.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/frenchbread/private-ip/releases\"\u003eprivate-ip's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eprivate-ip v3.0.2\u003c/h2\u003e\n\u003ch3\u003echanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdated \u003ccode\u003eyarn.lock\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eadded types to exports map (\u003ca href=\"https://github.com/frenchbread/private-ip/commit/346867afe100d442f5d56233b0d93040fb682d2f\"\u003e\u003ccode\u003e346867a\u003c/code\u003e\u003c/a\u003e - thanks \u003ca href=\"https://github.com/achingbrain\"\u003e\u003ccode\u003e@​achingbrain\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eprivate-ip v3.0.1\u003c/h2\u003e\n\u003ch3\u003echanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump \u003ccode\u003eava\u003c/code\u003e to \u003ccode\u003e5.3.1\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003ebump \u003ccode\u003etypescript\u003c/code\u003e to \u003ccode\u003e4.9.5\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003ebump \u003ccode\u003eipaddr.js\u003c/code\u003e to \u003ccode\u003e2.1.0\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eprivate-ip v3.0.0\u003c/h2\u003e\n\u003ch2\u003ebreaking changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003econverted package to \u003ca href=\"https://gist.github.com/sindresorhus/a39789f98801d908bbc7ff3ecc99d99c\"\u003eESM\u003c/a\u003e. Make sure it is supported in your project if using \u003ccode\u003e\u0026gt; v3.0.0\u003c/code\u003e. [\u003ca href=\"https://github.com/frenchbread/private-ip/commit/90ee0ce9980df28e2de28e93d646f31f101a83fc\"\u003e\u003ccode\u003e90ee0ce\u003c/code\u003e\u003c/a\u003e - thanks \u003ca href=\"https://github.com/tuyennhv\"\u003e\u003ccode\u003e@​tuyennhv\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eother changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003emigrated to \u003ccode\u003e@chainsafe/is-ip\u003c/code\u003e (ref: \u003ca href=\"https://redirect.github.com/ChainSafe/is-ip/pull/1\"\u003eChainSafe/is-ip#1\u003c/a\u003e). [\u003ca href=\"https://github.com/frenchbread/private-ip/commit/9f477dd4dcd633afa553322677ec019db997f428\"\u003e\u003ccode\u003e9f477dd\u003c/code\u003e\u003c/a\u003e - thanks to \u003ca href=\"https://github.com/tuyennhv\"\u003e\u003ccode\u003e@​tuyennhv\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/wemeetagain\"\u003e\u003ccode\u003e@​wemeetagain\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/9d984ed3cd6d17d1d5a0f0d358c13c4c7a8996dd\"\u003e\u003ccode\u003e9d984ed\u003c/code\u003e\u003c/a\u003e 3.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/8af3a74144886b020f853e23cf62c7feb2ea672b\"\u003e\u003ccode\u003e8af3a74\u003c/code\u003e\u003c/a\u003e update yarn.lock\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/72c3e8c0fe7aa27132ac4b787910225cee33589f\"\u003e\u003ccode\u003e72c3e8c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/frenchbread/private-ip/issues/24\"\u003e#24\u003c/a\u003e from achingbrain/fix/add-types-to-exports-map\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/346867afe100d442f5d56233b0d93040fb682d2f\"\u003e\u003ccode\u003e346867a\u003c/code\u003e\u003c/a\u003e fix: add types to exports map\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/009c6867353439af137225495f9922383bdbb54a\"\u003e\u003ccode\u003e009c686\u003c/code\u003e\u003c/a\u003e 3.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/9c8b4f6faad37ab1f43296cab9d67a5ea8f79157\"\u003e\u003ccode\u003e9c8b4f6\u003c/code\u003e\u003c/a\u003e upgrade dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/5568f2c4063fb076fa544a26b4569bb1cb6f4015\"\u003e\u003ccode\u003e5568f2c\u003c/code\u003e\u003c/a\u003e 3.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/5f1c56437d4b8d6ada3e3f6f09da92184897019e\"\u003e\u003ccode\u003e5f1c564\u003c/code\u003e\u003c/a\u003e update dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/7b3697da94d02b6e733c281838252328047d5b67\"\u003e\u003ccode\u003e7b3697d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/frenchbread/private-ip/issues/19\"\u003e#19\u003c/a\u003e from frenchbread/hotfix/typing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/ab988d1961105187fbbdbee51f24610803b86d64\"\u003e\u003ccode\u003eab988d1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/frenchbread/private-ip/issues/21\"\u003e#21\u003c/a\u003e from tuyennhv/tuyen/is_ip_4.0.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/frenchbread/private-ip/compare/2.3.4...3.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `typeorm` from 0.3.20 to 0.3.26\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typeorm/typeorm/releases\"\u003etypeorm's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.26\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNotes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eWhen using MySQL, TypeORM now connects using \u003ccode\u003estringifyObjects: true\u003c/code\u003e, in order to avoid a potential security vulnerability\nin the mysql/mysql2 client libraries. You can revert to the old behavior by setting \u003ccode\u003econnectionOptions.extra.stringifyObjects = false\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eWhen using SAP HANA, TypeORM now uses the built-in pool from the \u003ccode\u003e@sap/hana-client\u003c/code\u003e library. The deprecated \u003ccode\u003ehdb-pool\u003c/code\u003e\nis no longer necessary and can be removed. See \u003ca href=\"https://typeorm.io/docs/drivers/sap/#data-source-options\"\u003ehttps://typeorm.io/docs/drivers/sap/#data-source-options\u003c/a\u003e for the new pool options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Remove manual trigger on publish workflow by \u003ca href=\"https://github.com/michaelbromley\"\u003e\u003ccode\u003e@​michaelbromley\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11536\"\u003etypeorm/typeorm#11536\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest(ci): force mocha to exit on stuck process by \u003ca href=\"https://github.com/OSA413\"\u003e\u003ccode\u003e@​OSA413\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11538\"\u003etypeorm/typeorm#11538\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(oracle): pass duplicated parameters correctly to the client when executing a query by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11537\"\u003etypeorm/typeorm#11537\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(sap): add support for REAL_VECTOR and HALF_VECTOR data types in SAP HANA Cloud by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11526\"\u003etypeorm/typeorm#11526\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add stricter type-checking and improve event loop handling by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11540\"\u003etypeorm/typeorm#11540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: avoid unnecessary count on getManyAndCount by \u003ca href=\"https://github.com/EQuincerot\"\u003e\u003ccode\u003e@​EQuincerot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11524\"\u003etypeorm/typeorm#11524\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(sap): use the native driver for connection pooling by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11520\"\u003etypeorm/typeorm#11520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: support for better-sqlite3 v12 by \u003ca href=\"https://github.com/mohd-akram\"\u003e\u003ccode\u003e@​mohd-akram\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11557\"\u003etypeorm/typeorm#11557\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: preserve \u003ccode\u003euseIndex\u003c/code\u003e when cloning a QueryExpressionMap (or a QueryBuilder) by \u003ca href=\"https://github.com/kettui\"\u003e\u003ccode\u003e@​kettui\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/10679\"\u003etypeorm/typeorm#10679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: change test badge from \u003ccode\u003etest.yml\u003c/code\u003e to \u003ccode\u003ecommit-validation.yml\u003c/code\u003e by \u003ca href=\"https://github.com/albasyir\"\u003e\u003ccode\u003e@​albasyir\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11560\"\u003etypeorm/typeorm#11560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: do not create junction table metadata when it already exists by \u003ca href=\"https://github.com/ragrag\"\u003e\u003ccode\u003e@​ragrag\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11114\"\u003etypeorm/typeorm#11114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mysql): support AnalyticDB returning version() column name in getVersion() by \u003ca href=\"https://github.com/rhydian0x\"\u003e\u003ccode\u003e@​rhydian0x\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11555\"\u003etypeorm/typeorm#11555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve array modification bug in QueryRunner drop methods \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11563\"\u003e#11563\u003c/a\u003e by \u003ca href=\"https://github.com/taina0407\"\u003e\u003ccode\u003e@​taina0407\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11564\"\u003etypeorm/typeorm#11564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mysql): set \u003ccode\u003estringifyObjects\u003c/code\u003e implicitly by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11574\"\u003etypeorm/typeorm#11574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: separate driver-specific documentation by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11581\"\u003etypeorm/typeorm#11581\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix redirect to mongodb page by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11584\"\u003etypeorm/typeorm#11584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(11528): add Redis 5.x support with backward compatibility wite peer dependency to allow by \u003ca href=\"https://github.com/par333k\"\u003e\u003ccode\u003e@​par333k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11585\"\u003etypeorm/typeorm#11585\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: regtype is not supported in aurora serverless v2 by \u003ca href=\"https://github.com/ArsenyYankovsky\"\u003e\u003ccode\u003e@​ArsenyYankovsky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11568\"\u003etypeorm/typeorm#11568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(platform[web worker]): improve globalThis variable retrieval for … by \u003ca href=\"https://github.com/dasoncheng\"\u003e\u003ccode\u003e@​dasoncheng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11495\"\u003etypeorm/typeorm#11495\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: added \u003ccode\u003e@piying/orm\u003c/code\u003e extension to readme by \u003ca href=\"https://github.com/wszgrcy\"\u003e\u003ccode\u003e@​wszgrcy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11596\"\u003etypeorm/typeorm#11596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Fix \u003ccode\u003ereload\u003c/code\u003e option typo by \u003ca href=\"https://github.com/radovanovic-stevan\"\u003e\u003ccode\u003e@​radovanovic-stevan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11601\"\u003etypeorm/typeorm#11601\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add entity mode virtual-property by \u003ca href=\"https://github.com/wszgrcy\"\u003e\u003ccode\u003e@​wszgrcy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11597\"\u003etypeorm/typeorm#11597\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Release v0.3.26 by \u003ca href=\"https://github.com/michaelbromley\"\u003e\u003ccode\u003e@​michaelbromley\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11602\"\u003etypeorm/typeorm#11602\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/EQuincerot\"\u003e\u003ccode\u003e@​EQuincerot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11524\"\u003etypeorm/typeorm#11524\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kettui\"\u003e\u003ccode\u003e@​kettui\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/10679\"\u003etypeorm/typeorm#10679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ragrag\"\u003e\u003ccode\u003e@​ragrag\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11114\"\u003etypeorm/typeorm#11114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rhydian0x\"\u003e\u003ccode\u003e@​rhydian0x\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11555\"\u003etypeorm/typeorm#11555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/taina0407\"\u003e\u003ccode\u003e@​taina0407\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11564\"\u003etypeorm/typeorm#11564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/par333k\"\u003e\u003ccode\u003e@​par333k\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11585\"\u003etypeorm/typeorm#11585\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dasoncheng\"\u003e\u003ccode\u003e@​dasoncheng\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11495\"\u003etypeorm/typeorm#11495\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wszgrcy\"\u003e\u003ccode\u003e@​wszgrcy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11596\"\u003etypeorm/typeorm#11596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/radovanovic-stevan\"\u003e\u003ccode\u003e@​radovanovic-stevan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11601\"\u003etypeorm/typeorm#11601\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/typeorm/typeorm/compare/0.3.25...0.3.26\"\u003ehttps://github.com/typeorm/typeorm/compare/0.3.25...0.3.26\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.3.25\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typeorm/typeorm/blob/master/CHANGELOG.md\"\u003etypeorm's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/typeorm/typeorm/compare/0.3.25...0.3.26\"\u003e0.3.26\u003c/a\u003e (2025-08-16)\u003c/h2\u003e\n\u003cp\u003eNotes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eWhen using MySQL, TypeORM now connects using \u003ccode\u003estringifyObjects: true\u003c/code\u003e, in order to avoid a potential security vulnerability\nin the mysql/mysql2 client libraries. You can revert to the old behavior by setting \u003ccode\u003econnectionOptions.extra.stringifyObjects = false\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eWhen using SAP HANA, TypeORM now uses the built-in pool from the \u003ccode\u003e@sap/hana-client\u003c/code\u003e library. The deprecated \u003ccode\u003ehdb-pool\u003c/code\u003e\nis no longer necessary and can be removed. See \u003ca href=\"https://typeorm.io/docs/drivers/sap/#data-source-options\"\u003ehttps://typeorm.io/docs/drivers/sap/#data-source-options\u003c/a\u003e for the new pool options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd stricter type-checking and improve event loop handling (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11540\"\u003e#11540\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/01dddfef971b25884cd59497d003ea008740b0e9\"\u003e01dddfe\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edo not create junction table metadata when it already exists (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11114\"\u003e#11114\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/3c26cf18a77b5b0cd7c15c811fc3d0a43af32e47\"\u003e3c26cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emysql:\u003c/strong\u003e set \u003ccode\u003estringifyObjects\u003c/code\u003e implicitly (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11574\"\u003e#11574\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/d57fe3bd8578b0b8f9847647fd046bccf825a7ef\"\u003ed57fe3b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emysql:\u003c/strong\u003e support Alibaba AnalyticDB returning version() column name in getVersion() (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11555\"\u003e#11555\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/1737e97d1aab59307b230a25713d2afce3c8630a\"\u003e1737e97\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eoracle:\u003c/strong\u003e pass duplicated parameters correctly to the client when executing a query (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11537\"\u003e#11537\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/f2d2236218ea0fd80bc551c325511896538ec518\"\u003ef2d2236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eplatform[web worker]:\u003c/strong\u003e improve globalThis variable retrieval for browser environment (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11495\"\u003e#11495\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/ec26eae8245eeea20d00e37cdb59a97f3d8c49c8\"\u003eec26eae\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epreserve \u003ccode\u003euseIndex\u003c/code\u003e when cloning a QueryExpressionMap (or a QueryBuilder) (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/10679\"\u003e#10679\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/66ee3077847b16f2fc1464373668097fee270e65\"\u003e66ee307\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/10678\"\u003e#10678\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/10678\"\u003e#10678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eregtype is not supported in aurora serverless v2 (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11568\"\u003e#11568\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/6e9f20d4d94eeb6e89e2d49d8fcf7d7ea4f9c243\"\u003e6e9f20d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve array modification bug in QueryRunner drop methods (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11564\"\u003e#11564\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/f351757a15b9d2bd9d4222c69dcfd2316f46b5d1\"\u003ef351757\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11563\"\u003e#11563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esupport for better-sqlite3 v12 (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11557\"\u003e#11557\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/1ea3a5eb0605b6f253510b70df05af0211417706\"\u003e1ea3a5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd Redis 5.x support with backward compatibility with peer dependency to allow (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11585\"\u003e#11585\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/17cf837ba9d6dc1878d1ed4bb6b9342e767fa5ac\"\u003e17cf837\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11528\"\u003e#11528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esap:\u003c/strong\u003e add support for REAL_VECTOR and HALF_VECTOR data types in SAP HANA Cloud (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11526\"\u003e#11526\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/abf8863a5346c465d998852b920c72d51e506985\"\u003eabf8863\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esap:\u003c/strong\u003e use the native driver for connection pooling (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11520\"\u003e#11520\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/aebc7ebc67528ab5f980c7216d3f131d484f4e0d\"\u003eaebc7eb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport virtual columns in entity schema (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11597\"\u003e#11597\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/d1e39509076000485e77bbdf1841c29dc6588933\"\u003ed1e3950\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePerformance Improvements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid unnecessary count on getManyAndCount (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11524\"\u003e#11524\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/5904ac3db21d928e858cd7a6e5f4448fc44256d1\"\u003e5904ac3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/typeorm/typeorm/compare/0.3.24...0.3.25\"\u003e0.3.25\u003c/a\u003e (2025-06-19)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd collation update detection in PostgresDriver (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11441\"\u003e#11441\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/24c3e38c517bf67366704822668b3e618fa56430\"\u003e24c3e38\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/8647\"\u003e#8647\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/8647\"\u003e#8647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix null pointer exception on date array column comparison (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11532\"\u003e#11532\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/42e7cbe7da4444a3cbe3168f7e5056c964a241e8\"\u003e42e7cbe\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehandle limit(0) and offset(0) correctly in SelectQueryBuilder (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11507\"\u003e#11507\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/413f0a68c891ef463b6940fc40f92efc9a935adc\"\u003e413f0a6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eimprove async calls on disconnect (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11523\"\u003e#11523\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/ead4f98ee4cbf07843002f14771ef19ef44c5af1\"\u003eead4f98\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emultiple relations with same column name(s) generate invalid SELECT statement (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11400\"\u003e#11400\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/63a3b9abc1b4dd336e63ca7c65246891ceebae3d\"\u003e63a3b9a\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/1668\"\u003e#1668\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/9788\"\u003e#9788\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/9814\"\u003e#9814\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/10121\"\u003e#10121\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/10148\"\u003e#10148\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11109\"\u003e#11109\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11132\"\u003e#11132\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11180\"\u003e#11180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epostgres:\u003c/strong\u003e resolve alias or table name in upsert/insert or update conditionally (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11452\"\u003e#11452\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/2bfa300996110d2ed34b8d190e39c0eeeff24fe7\"\u003e2bfa300\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11082\"\u003e#11082\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11440\"\u003e#11440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etree-entity:\u003c/strong\u003e closure junction table primary key definition should match parent table (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11422\"\u003e#11422\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/ce23d4648ea026085ed0eae52bb9d6f07b2f836a\"\u003ece23d46\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e fix up doc search workflow (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11513\"\u003e#11513\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/930eefd758eb6954f29dc8b8c4f189eb02491ffd\"\u003e930eefd\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd upsert support for Oracle, SQLServer and SAP HANA (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/10974\"\u003e#10974\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/a9c16ee66d12d327e2ad9a511c8223bb72d4e693\"\u003ea9c16ee\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003espanner:\u003c/strong\u003e use credentials from connection options (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11492\"\u003e#11492\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/07d7913be7f3e85ecf7933098384b80cd06070c4\"\u003e07d7913\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11442\"\u003e#11442\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/4d204adf5639f5f16dde33a03d2fe3ac9a610d13\"\u003e\u003ccode\u003e4d204ad\u003c/code\u003e\u003c/a\u003e chore: Release v0.3.26 (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11602\"\u003e#11602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/d1e39509076000485e77bbdf1841c29dc6588933\"\u003e\u003ccode\u003ed1e3950\u003c/code\u003e\u003c/a\u003e feat: support virtual columns in entity schema (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11597\"\u003e#11597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/16983132d3a876442ea219f5bca55f974350951a\"\u003e\u003ccode\u003e1698313\u003c/code\u003e\u003c/a\u003e docs: fix \u003ccode\u003ereload\u003c/code\u003e option typo (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11601\"\u003e#11601\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/0b767e833dfa8f63204edae32e1114dfe9f70362\"\u003e\u003ccode\u003e0b767e8\u003c/code\u003e\u003c/a\u003e docs: added \u003ccode\u003e@piying/orm\u003c/code\u003e extension to readme (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11596\"\u003e#11596\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/ec26eae8245eeea20d00e37cdb59a97f3d8c49c8\"\u003e\u003ccode\u003eec26eae\u003c/code\u003e\u003c/a\u003e fix(platform[web worker]): improve globalThis variable retrieval for browser ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/6e9f20d4d94eeb6e89e2d49d8fcf7d7ea4f9c243\"\u003e\u003ccode\u003e6e9f20d\u003c/code\u003e\u003c/a\u003e fix: regtype is not supported in aurora serverless v2 (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11568\"\u003e#11568\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/17cf837ba9d6dc1878d1ed4bb6b9342e767fa5ac\"\u003e\u003ccode\u003e17cf837\u003c/code\u003e\u003c/a\u003e feat(11528): add Redis 5.x support with backward compatibility wite peer depe...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/8097d1ab84f6c387f29084eae241b934949862ad\"\u003e\u003ccode\u003e8097d1a\u003c/code\u003e\u003c/a\u003e docs: fix redirect to mongodb page (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11584\"\u003e#11584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/23fcde24eec67d80cdc7e9e8127ebd79746a663b\"\u003e\u003ccode\u003e23fcde2\u003c/code\u003e\u003c/a\u003e docs: separate driver-specific documentation (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11581\"\u003e#11581\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/d57fe3bd8578b0b8f9847647fd046bccf825a7ef\"\u003e\u003ccode\u003ed57fe3b\u003c/code\u003e\u003c/a\u003e fix(mysql): set \u003ccode\u003estringifyObjects\u003c/code\u003e implicitly (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11574\"\u003e#11574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/typeorm/typeorm/compare/0.3.20...0.3.26\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~michaelbromley\"\u003emichaelbromley\u003c/a\u003e, a new releaser for typeorm since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `webpack` from 5.97.1 to 5.104.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/webpack/webpack/releases\"\u003ewebpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.104.1\u003c/h2\u003e\n\u003ch2\u003e5.104.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2efd21b: Reexports runtime calculation should not accessing \u003cstrong\u003eWEBPACK_IMPORT_KEY\u003c/strong\u003e decl with var.\u003c/li\u003e\n\u003cli\u003ec510070: Fixed a user information bypass vulnerability in the HttpUriPlugin plugin.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.104.0\u003c/h2\u003e\n\u003ch2\u003e5.104.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed3dd841: Use method shorthand to render module content in \u003ccode\u003e__webpack_modules__\u003c/code\u003e object.\u003c/li\u003e\n\u003cli\u003ed3dd841: Enhance \u003ccode\u003eimport.meta.env\u003c/code\u003e to support object access.\u003c/li\u003e\n\u003cli\u003e4baab4e: Optimize dependency sorting in updateParent: sort each module only once by deferring to finishUpdateParent(), and reduce traversal count in sortWithSourceOrder by caching WeakMap values upfront.\u003c/li\u003e\n\u003cli\u003e04cd530: Handle more at-rules for CSS modules.\u003c/li\u003e\n\u003cli\u003ecafae23: Added options to control the renaming of at-rules and various identifiers in CSS modules.\u003c/li\u003e\n\u003cli\u003ed3dd841: Added \u003ccode\u003ebase64url\u003c/code\u003e, \u003ccode\u003ebase62\u003c/code\u003e, \u003ccode\u003ebase58\u003c/code\u003e, \u003ccode\u003ebase52\u003c/code\u003e, \u003ccode\u003ebase49\u003c/code\u003e, \u003ccode\u003ebase36\u003c/code\u003e, \u003ccode\u003ebase32\u003c/code\u003e and \u003ccode\u003ebase25\u003c/code\u003e digests.\u003c/li\u003e\n\u003cli\u003e5983843: Provide a stable runtime function variable \u003ccode\u003e__webpack_global__\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003ed3dd841: Improved \u003ccode\u003elocalIdentName\u003c/code\u003e hashing for CSS.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e22c48fb: Added module existence check for informative error message in development mode.\u003c/li\u003e\n\u003cli\u003e50689e1: Use the fully qualified class name (or export name) for \u003ccode\u003e[fullhash]\u003c/code\u003e placeholder in CSS modules.\u003c/li\u003e\n\u003cli\u003ed3dd841: Support universal lazy compilation.\u003c/li\u003e\n\u003cli\u003ed3dd841: Fixed module library export definitions when multiple runtimes.\u003c/li\u003e\n\u003cli\u003ed3dd841: Fixed CSS nesting and CSS custom properties parsing.\u003c/li\u003e\n\u003cli\u003ed3dd841: Don't write fragment from URL to filename and apply fragment to module URL.\u003c/li\u003e\n\u003cli\u003eaab1da9: Fixed bugs for \u003ccode\u003ecss/global\u003c/code\u003e type.\u003c/li\u003e\n\u003cli\u003ed3dd841: Compatibility \u003ccode\u003eimport.meta.filename\u003c/code\u003e and \u003ccode\u003eimport.meta.dirname\u003c/code\u003e with \u003ccode\u003eeval\u003c/code\u003e devtools.\u003c/li\u003e\n\u003cli\u003ed3dd841: Handle nested \u003ccode\u003e__webpack_require__\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e728ddb7: The speed of identifier parsing has been improved.\u003c/li\u003e\n\u003cli\u003e0f8b31b: Improve types.\u003c/li\u003e\n\u003cli\u003ed3dd841: Don't corrupt \u003ccode\u003edebugId\u003c/code\u003e injection when \u003ccode\u003ehidden-source-map\u003c/code\u003e is used.\u003c/li\u003e\n\u003cli\u003e2179fdb: Re-validate HttpUriPlugin redirects against allowedUris, restrict to http(s) and add a conservative redirect limit to prevent SSRF and untrusted content inclusion. Redirects failing policy are rejected before caching/lockfile writes.\u003c/li\u003e\n\u003cli\u003ed3dd841: Serialize \u003ccode\u003eHookWebpackError\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003ed3dd841: Added ability to use built-in properties in dotenv and define plugin.\u003c/li\u003e\n\u003cli\u003e3c4319f: Optimizing the regular expression character class by specifying ranges for runtime code.\u003c/li\u003e\n\u003cli\u003ed3dd841: Reduce collision for local indent name in CSS.\u003c/li\u003e\n\u003cli\u003ed3dd841: Remove CSS link tags when CSS imports are removed.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.103.0\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eDotenvPlugin\u003c/code\u003e and top level \u003ccode\u003edotenv\u003c/code\u003e option to enable this plugin\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eWebpackManifestPlugin\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdded support the \u003ccode\u003eignoreList\u003c/code\u003e option in devtool plugins\u003c/li\u003e\n\u003cli\u003eAllow to use custom javascript parse function\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/webpack/webpack/blob/main/CHANGELOG.md\"\u003ewebpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.104.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2efd21b: Reexports runtime calculation should not accessing \u003cstrong\u003eWEBPACK_IMPORT_KEY\u003c/strong\u003e decl with var.\u003c/li\u003e\n\u003cli\u003ec510070: Fixed a user information bypass vulnerability in the HttpUriPlugin plugin.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.104.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed3dd841: Use method shorthand to render module content in \u003ccode\u003e__webpack_modules__\u003c/code\u003e object.\u003c/li\u003e\n\u003cli\u003ed3dd841: Enhance \u003ccode\u003eimport.meta.env\u003c/code\u003e to support object access.\u003c/li\u003e\n\u003cli\u003e4baab4e: Optimize dependency sorting in updateParent: sort each module only once by deferring to finishUpdateParent(), and reduce traversal count in sortWithSourceOrder by caching WeakMap values upfront.\u003c/li\u003e\n\u003cli\u003e04cd530: Handle more at-rules for CSS modules.\u003c/li\u003e\n\u003cli\u003ecafae23: Added options to control the renaming of at-rules and various identifiers in CSS modules.\u003c/li\u003e\n\u003cli\u003ed3dd841: Added \u003ccode\u003ebase64url\u003c/code\u003e, \u003ccode\u003ebase62\u003c/code\u003e, \u003ccode\u003ebase58\u003c/code\u003e, \u003ccode\u003ebase52\u003c/code\u003e, \u003ccode\u003ebase49\u003c/code\u003e, \u003ccode\u003ebase36\u003c/code\u003e, \u003ccode\u003ebase32\u003c/code\u003e and \u003ccode\u003ebase25\u003c/code\u003e digests.\u003c/li\u003e\n\u003cli\u003e5983843: Provide a stable runtime function variable \u003ccode\u003e__webpack_global__\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003ed3dd841: Improved \u003ccode\u003elocalIdentName\u003c/code\u003e hashing for CSS.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e22c48fb: Added module existence check for informative error message in development mode.\u003c/li\u003e\n\u003cli\u003e50689e1: Use the fully qualified class name (or export name) for \u003ccode\u003e[fullhash]\u003c/code\u003e placeholder in CSS modules.\u003c/li\u003e\n\u003cli\u003ed3dd841: Support universal lazy compilation.\u003c/li\u003e\n\u003cli\u003ed3dd841: Fixed module library export definitions when multiple runtimes.\u003c/li\u003e\n\u003cli\u003ed3dd841: Fixed CSS nesting and CSS custom properties parsing.\u003c/li\u003e\n\u003cli\u003ed3dd841: Don't write fragment from URL to filename and apply fragment to module URL.\u003c/li\u003e\n\u003cli\u003eaab1da9: Fixed bugs for \u003ccode\u003ecss/global\u003c/code\u003e type.\u003c/li\u003e\n\u003cli\u003ed3dd841: Compatibility \u003ccode\u003eimport.meta.filename\u003c/code\u003e and \u003ccode\u003eimport.meta.dirname\u003c/code\u003e with \u003ccode\u003eeval\u003c/code\u003e devtools.\u003c/li\u003e\n\u003cli\u003ed3dd841: Handle nested \u003ccode\u003e__webpack_require__\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e728ddb7: The speed of identifier parsing has been improved.\u003c/li\u003e\n\u003cli\u003e0f8b31b: Improve types.\u003c/li\u003e\n\u003cli\u003ed3dd841: Don't corrupt \u003ccode\u003edebugId\u003c/code\u003e injection when \u003ccode\u003ehidden-source-map\u003c/code\u003e is used.\u003c/li\u003e\n\u003cli\u003e2179fdb: Re-validate HttpUriPlugin redirects against allowedUris, restrict to http(s) and add a conservative redirect limit to prevent SSRF and untrusted content inclusion. Redirects failing policy are rejected before caching/lockfile writes.\u003c/li\u003e\n\u003cli\u003ed3dd841: Serialize \u003ccode\u003eHookWebpackError\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003ed3dd841: Added ability to use built-in properties in dotenv and define plugin.\u003c/li\u003e\n\u003cli\u003e3c4319f: Optimizing the regular expression character class by specifying ranges for runtime code.\u003c/li\u003e\n\u003c...\n\n_Description has been truncated_","html_url":"https://github.com/ssushant0011/omnivore/pull/10","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ssushant0011%2Fomnivore/issues/10","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10/packages"},{"uuid":"3973965473","node_id":"PR_kwDOOrzwks7Fb2Cz","number":5,"state":"closed","title":"chore(deps): Bump the npm_and_yarn group across 9 directories with 27 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-25T01:08:00.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-22T08:56:06.000Z","updated_at":"2026-02-25T01:08:01.000Z","time_to_close":231114,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","group_name":"npm_and_yarn","update_count":27,"packages":[{"name":"react-router","old_version":"6.22.3","new_version":"6.30.2","repository_url":"https://github.com/remix-run/react-router"},{"name":"@backstage/backend-defaults","old_version":"0.2.18","new_version":"0.15.2","repository_url":"https://github.com/backstage/backstage"},{"name":"@backstage/plugin-scaffolder-backend","old_version":"1.27.1","new_version":"2.1.1","repository_url":"https://github.com/backstage/backstage"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"glob","old_version":"11.0.1","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"@langchain/core","old_version":"0.3.22","new_version":"0.3.80","repository_url":"https://github.com/langchain-ai/langchainjs"},{"name":"@babel/runtime-corejs3","old_version":"7.24.0","new_version":"7.29.0","repository_url":"https://github.com/babel/babel"},{"name":"@backstage/cli-common","old_version":"0.1.14","new_version":"0.1.18","repository_url":"https://github.com/backstage/backstage"},{"name":"@backstage/plugin-techdocs-node","old_version":"1.12.14","new_version":"1.14.2","repository_url":"https://github.com/backstage/backstage"},{"name":"@smithy/config-resolver","old_version":"2.1.5","new_version":"2.2.0","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"axios","old_version":"1.7.5","new_version":"1.13.5","repository_url":"https://github.com/axios/axios"},{"name":"cipher-base","old_version":"1.0.4","new_version":"1.0.7","repository_url":"https://github.com/crypto-browserify/cipher-base"},{"name":"diff","old_version":"4.0.2","new_version":"4.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"http-proxy-middleware","old_version":"2.0.7","new_version":"2.0.9","repository_url":"https://github.com/chimurai/http-proxy-middleware"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"3.2.2","new_version":"3.2.3","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"multer","old_version":"1.4.5-lts.1","new_version":"1.4.5-lts.2","repository_url":"https://github.com/expressjs/multer"},{"name":"node-forge","old_version":"1.3.1","new_version":"1.3.3","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"pbkdf2","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/browserify/pbkdf2"},{"name":"qs","old_version":"6.5.3","new_version":"6.5.5","repository_url":"https://github.com/ljharb/qs"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"webpack-dev-server","old_version":"5.0.4","new_version":"5.2.3","repository_url":"https://github.com/webpack/webpack-dev-server"},{"name":"webpack","old_version":"5.96.1","new_version":"5.105.2","repository_url":"https://github.com/webpack/webpack"},{"name":"xml-crypto","old_version":"3.2.0","new_version":"3.2.1","repository_url":"https://github.com/node-saml/xml-crypto"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [react-router](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router) | `6.22.3` | `6.30.2` |\n| [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults) | `0.2.18` | `0.15.2` |\n| [@backstage/plugin-scaffolder-backend](https://github.com/backstage/backstage/tree/HEAD/plugins/scaffolder-backend) | `1.27.1` | `2.1.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.1` | `12.0.0` |\n| [@langchain/core](https://github.com/langchain-ai/langchainjs) | `0.3.22` | `0.3.80` |\n| [@babel/runtime-corejs3](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime-corejs3) | `7.24.0` | `7.29.0` |\n| [@backstage/cli-common](https://github.com/backstage/backstage/tree/HEAD/packages/cli-common) | `0.1.14` | `0.1.18` |\n| [@backstage/plugin-techdocs-node](https://github.com/backstage/backstage/tree/HEAD/plugins/techdocs-node) | `1.12.14` | `1.14.2` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `2.1.5` | `2.2.0` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [axios](https://github.com/axios/axios) | `1.7.5` | `1.13.5` |\n| [cipher-base](https://github.com/crypto-browserify/cipher-base) | `1.0.4` | `1.0.7` |\n| [diff](https://github.com/kpdecker/jsdiff) | `4.0.2` | `4.0.4` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) | `2.0.7` | `2.0.9` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [multer](https://github.com/expressjs/multer) | `1.4.5-lts.1` | `1.4.5-lts.2` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [pbkdf2](https://github.com/browserify/pbkdf2) | `3.1.2` | `3.1.5` |\n| [qs](https://github.com/ljharb/qs) | `6.5.3` | `6.5.5` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [webpack-dev-server](https://github.com/webpack/webpack-dev-server) | `5.0.4` | `5.2.3` |\n| [webpack](https://github.com/webpack/webpack) | `5.96.1` | `5.105.2` |\n| [xml-crypto](https://github.com/node-saml/xml-crypto) | `3.2.0` | `3.2.1` |\n\nBumps the npm_and_yarn group with 4 updates in the /examples/cdk directory: [ajv](https://github.com/ajv-validator/ajv), [diff](https://github.com/kpdecker/jsdiff), [js-yaml](https://github.com/nodeca/js-yaml) and [minimatch](https://github.com/isaacs/minimatch).\nBumps the npm_and_yarn group with 2 updates in the /packages/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults) and [@backstage/plugin-scaffolder-backend](https://github.com/backstage/backstage/tree/HEAD/plugins/scaffolder-backend).\nBumps the npm_and_yarn group with 1 update in the /plugins/codebuild/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults).\nBumps the npm_and_yarn group with 1 update in the /plugins/codepipeline/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults).\nBumps the npm_and_yarn group with 1 update in the /plugins/cost-insights/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults).\nBumps the npm_and_yarn group with 1 update in the /plugins/ecr/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults).\nBumps the npm_and_yarn group with 1 update in the /plugins/ecs/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults).\nBumps the npm_and_yarn group with 1 update in the /plugins/genai/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults).\n\nUpdates `react-router` from 6.22.3 to 6.30.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/remix-run/react-router/releases\"\u003ereact-router's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.30.2\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/v6/CHANGELOG.md#v6302\"\u003ehttps://github.com/remix-run/react-router/blob/v6/CHANGELOG.md#v6302\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.30.1\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6301\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6301\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.30.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6300\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6300\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.29.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6290\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6290\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.28.2\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6282\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6282\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.28.1\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6281\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6281\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.28.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6280\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6280\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.27.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6270\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6270\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.26.2\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6262\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6262\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.26.1\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6261\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6261\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.26.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6260\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6260\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.25.1\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6251\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6251\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.25.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6250\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6250\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.24.1\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6241\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6241\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.24.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6240\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6240\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.23.1\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6231\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6231\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.23.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6230\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6230\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/remix-run/react-router/blob/react-router@6.30.2/packages/react-router/CHANGELOG.md\"\u003ereact-router's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e6.30.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@remix-run/router@1.23.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.30.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePartially revert optimization added in \u003ccode\u003e6.29.0\u003c/code\u003e to reduce calls to \u003ccode\u003ematchRoutes\u003c/code\u003e because it surfaced other issues (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/13623\"\u003e#13623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eStop logging invalid warning when \u003ccode\u003ev7_relativeSplatPath\u003c/code\u003e is set to false (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/13502\"\u003e#13502\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.30.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003efetcherKey\u003c/code\u003e as a parameter to \u003ccode\u003epatchRoutesOnNavigation\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/13109\"\u003e#13109\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@remix-run/router@1.23.0\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.29.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eProvide the request \u003ccode\u003esignal\u003c/code\u003e as a parameter to \u003ccode\u003epatchRoutesOnNavigation\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/12900\"\u003e#12900\u003c/a\u003e)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThis can be used to abort any manifest fetches if the in-flight navigation/fetcher is aborted\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not log v7 deprecation warnings in production builds (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/12794\"\u003e#12794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit matchRoutes optimization to client side routers (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/12881\"\u003e#12881\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eOptimize route matching by skipping redundant \u003ccode\u003ematchRoutes\u003c/code\u003e calls when possible (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/12169\"\u003e#12169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdated dependencies:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@remix-run/router@1.22.0\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.28.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@remix-run/router@1.21.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.28.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/26b5d4581fb2829dc7eaeaad413de4735173a6eb\"\u003e\u003ccode\u003e26b5d45\u003c/code\u003e\u003c/a\u003e chore: Update version for release (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14541\"\u003e#14541\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/919f8a86b95f0c8956e3820743503d5609f572cd\"\u003e\u003ccode\u003e919f8a8\u003c/code\u003e\u003c/a\u003e chore: Update version for release (pre-v6) (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14540\"\u003e#14540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/69bf7056f1540918a0324e0af215978cdaf5d486\"\u003e\u003ccode\u003e69bf705\u003c/code\u003e\u003c/a\u003e Normalize double slashes in resolvePath (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14537\"\u003e#14537\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/3f2400e9a7e255953afef3d29126db2efb6c08ab\"\u003e\u003ccode\u003e3f2400e\u003c/code\u003e\u003c/a\u003e chore: Update version for release (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/13647\"\u003e#13647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/25a264d87bce0bd5f0170e99a3dcad3a61a5f080\"\u003e\u003ccode\u003e25a264d\u003c/code\u003e\u003c/a\u003e chore: Update version for release (pre-v6) (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/13638\"\u003e#13638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/b5705a0b5e905212487336d7548d86418b299f16\"\u003e\u003ccode\u003eb5705a0\u003c/code\u003e\u003c/a\u003e Remove matchRoutes optimization from render pass (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/13623\"\u003e#13623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/785f6f6d7796d36a1c60d1c718a69e6cb1f8d415\"\u003e\u003ccode\u003e785f6f6\u003c/code\u003e\u003c/a\u003e Prevent invalid warning for v7_relativeSplatPath (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/13502\"\u003e#13502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/e4ba5224c911e070b1eabd12cff2aa581270dfb3\"\u003e\u003ccode\u003ee4ba522\u003c/code\u003e\u003c/a\u003e chore: Update version for release (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/13128\"\u003e#13128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/f0bc784ce8951cc5ed67bf6d48d9c132b9bdc621\"\u003e\u003ccode\u003ef0bc784\u003c/code\u003e\u003c/a\u003e chore: Update version for release (pre-v6) (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/13111\"\u003e#13111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/d9ed8241d677de006a9bfe808d32fe4582184dad\"\u003e\u003ccode\u003ed9ed824\u003c/code\u003e\u003c/a\u003e Fix up changelogs\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/remix-run/react-router/commits/react-router@6.30.2/packages/react-router\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for react-router since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@backstage/backend-defaults` from 0.2.18 to 0.15.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/backstage/backstage/blob/master/packages/backend-defaults/CHANGELOG.md\"\u003e\u003ccode\u003e@​backstage/backend-defaults\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.15.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003cli\u003e44f5d04: Minor internal restructure of the postgres config loading code\u003c/li\u003e\n\u003cli\u003e4fc7bf0: Bump to tar v7\u003c/li\u003e\n\u003cli\u003e5dd683f: \u003ccode\u003ecreateRateLimitMiddleware\u003c/code\u003e is now exported from \u003ccode\u003e@backstage/backend-defaults/httpRouter\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e8dd518a: Support \u003ccode\u003econnection.type: azure\u003c/code\u003e in database client to use Microsoft Entra authentication with Azure database for PostgreSQL\u003c/li\u003e\n\u003cli\u003e69d880e: Bump to latest zod to ensure it has the latest features\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-app-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.20.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration-aws-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.20\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-dev-utils\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.7\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/config-loader\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.10.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/cli-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-auth-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.6.13\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-permission-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.10.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-events-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.4.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.15.2-next.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8dd518a: Support \u003ccode\u003econnection.type: azure\u003c/code\u003e in database client to use Microsoft Entra authentication with Azure database for PostgreSQL\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.20.0-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/cli-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.18-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0-next.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.15.1-next.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003cli\u003e44f5d04: Minor internal restructure of the postgres config loading code\u003c/li\u003e\n\u003cli\u003e4fc7bf0: Bump to tar v7\u003c/li\u003e\n\u003cli\u003e69d880e: Bump to latest zod to ensure it has the latest features\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration-aws-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.20-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-dev-utils\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.7-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/config-loader\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.10.8-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.19.3-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/cli-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.17-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-auth-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.6.12-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-app-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.5.0-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-permission-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.10.9-next.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/backstage/backstage/commits/HEAD/packages/backend-defaults\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@backstage/plugin-scaffolder-backend` from 1.27.1 to 2.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/backstage/backstage/releases\"\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.48.1\u003c/h2\u003e\n\u003cp\u003eThis patch release fixes the following issues:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd missing sharing extensions sidebar item in frontend system architecture docs\u003c/li\u003e\n\u003cli\u003eFix type compatibility for older plugins in FrontendFeature type\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.48.0\u003c/h2\u003e\n\u003cp\u003eThese are the release notes for the v1.48.0 release of \u003ca href=\"https://backstage.io/\"\u003eBackstage\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eA huge thanks to the whole team of maintainers and contributors as well as the amazing Backstage Community for the hard work in getting this release developed and done.\u003c/p\u003e\n\u003ch2\u003eHighlights\u003c/h2\u003e\n\u003ch3\u003e\u003cstrong\u003eBREAKING ALPHA\u003c/strong\u003e: Catalog extension points graduated\u003c/h3\u003e\n\u003cp\u003eIf you are providing custom processors and entity providers into the catalog, you will now note that several (but not quite all!) of those extension points have graduated out of alpha and into the regular stable exports.\u003c/p\u003e\n\u003cp\u003eThus, if you are importing for example \u003ccode\u003ecatalogProcessingExtensionPoint\u003c/code\u003e from \u003ccode\u003e@backstage/plugin-catalog-node/alpha\u003c/code\u003e, you now want to remove that \u003ccode\u003e/alpha\u003c/code\u003e suffix.\u003c/p\u003e\n\u003ch3\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: API restrictions in New Frontend System\u003c/h3\u003e\n\u003cp\u003eIn the 1.47 release a new behavior was introduced to the New Frontend System that limits the ability for plugins and modules to provide APIs to plugins other than themselves. For example, the \u003ccode\u003escaffolder\u003c/code\u003e plugin could no longer install a custom \u003ccode\u003eCatalogApi\u003c/code\u003e implementation. This also applies to modules, where you now need to use a module explicitly targeting the \u003ccode\u003e'app'\u003c/code\u003e plugin to for example override the \u003ccode\u003eErrorApi\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eIn 1.47 this new behavior simply triggered a warning, but in this release the API overrides are instead rejected with an error.\u003c/p\u003e\n\u003ch3\u003eExperimental Client ID Metadata Documents\u003c/h3\u003e\n\u003cp\u003eWith the \u003ca href=\"https://modelcontextprotocol.io/specification/2025-11-25/basic/authorization\"\u003elatest MCP specification\u003c/a\u003e published in November, it outlined a new authorization method that’s going to take over from Dynamic Client Registration called \u003ca href=\"https://modelcontextprotocol.io/specification/2025-11-25/basic/authorization#client-id-metadata-documents\"\u003eClient ID Metadata Documents\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eThis can be enabled in the \u003ccode\u003eauth-backend\u003c/code\u003e plugin by using the \u003ccode\u003eauth.experimentalClientIdMetadataDocuments.enabled\u003c/code\u003e flag in config.\u003c/p\u003e\n\u003cp\u003eBe sure to head over to the \u003ca href=\"https://github.com/backstage/backstage/blob/master/plugins/auth-backend/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for additional configuration and security considerations.\u003c/p\u003e\n\u003ch3\u003eExperimental Refresh Token Support\u003c/h3\u003e\n\u003cp\u003eClients can now request the \u003ccode\u003eoffline_access\u003c/code\u003e scope to receive refresh tokens when \u003ccode\u003eauth.experimentalRefreshToken.enabled\u003c/code\u003e is set, allowing new access tokens without re-authentication. This can be highly useful when using \u003ccode\u003eexperimentalDynamicClientRegistration\u003c/code\u003e so that the tokens don’t expire every 1h by default, which then triggers another auth session approval request.\u003c/p\u003e\n\u003cp\u003eThis also means that \u003ccode\u003eauth.experimentalDynamicClientRegistration.tokenExpiration\u003c/code\u003e has been removed in favor of using this method as a \u003cstrong\u003eBREAKING EXPERIMENTAL\u003c/strong\u003e change.\u003c/p\u003e\n\u003ch3\u003eNew Frontend System: Testing utilities\u003c/h3\u003e\n\u003cp\u003eThe testing utilities for the new frontend system have gotten an overhaul in this release, with all new features documented in the \u003ca href=\"https://backstage.io/docs/frontend-system/building-plugins/testing\"\u003eplugin testing section\u003c/a\u003e. Some highlights include that \u003ccode\u003emountedRoutes\u003c/code\u003e and \u003ccode\u003eapis\u003c/code\u003e options are available for all harnesses where applicable. The selection of \u003ccode\u003emockApis\u003c/code\u003e has been increased to support more of the core APIs and have both Jest and minimal implementation mocks. The \u003ccode\u003emockApis\u003c/code\u003e now also produces values that can be passed directly to the various testing \u003ccode\u003eapis\u003c/code\u003e options, without the need to wrap \u003ccode\u003e[ref, impl]\u003c/code\u003e tuples.\u003c/p\u003e\n\u003ch3\u003eUtilities for creating frontend and backend mocks\u003c/h3\u003e\n\u003cp\u003eBoth \u003ccode\u003e@backstage/frontend-test-utils\u003c/code\u003e and \u003ccode\u003e@backstage/backend-test-utils\u003c/code\u003e now export utilities for creating service and API mocks, \u003ccode\u003ecreateServiceMock\u003c/code\u003e and \u003ccode\u003ecreateApiMock\u003c/code\u003e. These utilities create the same kind of mock utilities as the ones provided by \u003ccode\u003emockServices\u003c/code\u003e and \u003ccode\u003emockApis\u003c/code\u003e, and are encouraged to be exported via the \u003ccode\u003e/testUtils\u003c/code\u003e sub-path export from packages, similar to how this pattern is used in \u003ccode\u003e@backstage/plugin-catalog-react\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eNew Frontend System: Plugin titles \u0026amp; icons\u003c/h3\u003e\n\u003cp\u003ePlugins now have optional titles and icons in the new frontend system. This helps implement app-wide features and navigation patterns that enumerate plugins or in other ways traverse the extension tree in the app.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/backstage/backstage/blob/master/plugins/scaffolder-backend/CHANGELOG.md\"\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend\u003c/code\u003e\u003c/h1\u003e\n\u003ch2\u003e3.1.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003cli\u003e4fc7bf0: Removed unused dependency\u003c/li\u003e\n\u003cli\u003e0ce78b0: Support \u003ccode\u003eif\u003c/code\u003e conditions inside \u003ccode\u003eeach\u003c/code\u003e loops for scaffolder steps\u003c/li\u003e\n\u003cli\u003e5e3ef57: Added \u003ccode\u003epeerModules\u003c/code\u003e metadata declaring recommended modules for cross-plugin integrations.\u003c/li\u003e\n\u003cli\u003e8148621: Moved \u003ccode\u003e@backstage/backend-defaults\u003c/code\u003e from \u003ccode\u003edependencies\u003c/code\u003e to \u003ccode\u003edevDependencies\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e1e669cc: Migrate audit events reference docs to \u003ca href=\"http://backstage.io/docs\"\u003ehttp://backstage.io/docs\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e69d880e: Bump to latest zod to ensure it has the latest features\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-gitlab\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.11.3\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.20.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-catalog-backend-module-scaffolder-entity-model\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.17\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-catalog-node\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.0.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-bitbucket-cloud\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.3.3\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-bitbucket\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.3.19\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-gerrit\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-github\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.9.6\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-gitea\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-openapi-utils\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.6.6\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-bitbucket-cloud-common\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.3.7\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.12.5\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-auth-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.6.13\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-permission-common\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.9.6\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-permission-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.10.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-events-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.4.19\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-azure\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-bitbucket-server\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-common\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.6\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.1.3-next.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8148621: Moved \u003ccode\u003e@backstage/backend-defaults\u003c/code\u003e from \u003ccode\u003edependencies\u003c/code\u003e to \u003ccode\u003edevDependencies\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-gitlab\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.11.3-next.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.20.0-next.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-catalog-node\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.0.0-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-auth-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.6.13-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-catalog-backend-module-scaffolder-entity-model\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.17-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-events-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.4.19-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-permission-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.10.10-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-bitbucket\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.3.19-next.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/backstage/backstage/commits/HEAD/plugins/scaffolder-backend\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.1 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.1...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@langchain/core` from 0.3.22 to 0.3.80\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/langchain-ai/langchainjs/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~hntrl\"\u003ehntrl\u003c/a\u003e, a new releaser for \u003ccode\u003e@​langchain/core\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/runtime-corejs3` from 7.24.0 to 7.29.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/runtime-corejs3\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.0 (2026-01-31)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e for your first PR!\u003c/p\u003e\n\u003ch4\u003e:rocket: New Feature\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17750\"\u003e#17750\u003c/a\u003e [7.x backport] Add attributes import declaration builder (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17663\"\u003e#17663\u003c/a\u003e [7.x backport] feat(standalone): export async transform (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17725\"\u003e#17725\u003c/a\u003e [7.x backport] feat: read standalone targets from data-targets (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17765\"\u003e#17765\u003c/a\u003e fix(parser): correctly parse type assertions in \u003ccode\u003eextends\u003c/code\u003e clause (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17723\"\u003e#17723\u003c/a\u003e [7.x backport] fix(parser): improve super type argument parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17708\"\u003e#17708\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentPath is given (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-block-scoping\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17737\"\u003e#17737\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates shadowing variable (\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17642\"\u003e#17642\u003c/a\u003e [Babel 7] Improve generator performance (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 6\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDavid (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aa8394e454337d118ac3d40bfa3ee1a3cb3f3ed2\"\u003e\u003ccode\u003eaa8394e\u003c/code\u003e\u003c/a\u003e v7.29.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/0053db620c05acf0036f593b5aaf4e372daa79d0\"\u003e\u003ccode\u003e0053db6\u003c/code\u003e\u003c/a\u003e Update polyfill packages (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime-corejs3/issues/17727\"\u003e#17727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/68e157771568abc3ba8b2775caf7618cd9692ae5\"\u003e\u003ccode\u003e68e1577\u003c/code\u003e\u003c/a\u003e [Babel 7] Improve generator performance (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime-corejs3/issues/17642\"\u003e#17642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime-corejs3/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime-corejs3/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ccc5fae96f5281ae1ee49fac74c7c275b9111ead\"\u003e\u003ccode\u003eccc5fae\u003c/code\u003e\u003c/a\u003e v7.28.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.0/packages/babel-runtime-corejs3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/runtime-corejs3\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@backstage/cli-common` from 0.1.14 to 0.1.18\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/backstage/backstage/blob/master/packages/cli-common/CHANGELOG.md\"\u003e\u003ccode\u003e@​backstage/cli-common\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.1.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.18-next.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/errors\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.2.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eae4dd5d: Move some of the symlink resolution to \u003ccode\u003eisChildPath\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e5cfb2a4: Added new \u003ccode\u003erun\u003c/code\u003e, \u003ccode\u003erunOutput\u003c/code\u003e, and \u003ccode\u003erunCheck\u003c/code\u003e utilities to help run child processes in a safe and portable way.\u003c/li\u003e\n\u003cli\u003ec8c2329: Add proxy configuration from env-vars to create-app tasks\u003c/li\u003e\n\u003cli\u003e2bae83a: Bumped dev dependencies \u003ccode\u003e@types/node\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.16-next.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2bae83a: Bumped dev dependencies \u003ccode\u003e@types/node\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/errors\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.2.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.16-next.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e5cfb2a4: Added new \u003ccode\u003erun\u003c/code\u003e, \u003ccode\u003erunOutput\u003c/code\u003e, and \u003ccode\u003erunCheck\u003c/code\u003e utilities to help run child processes in a safe and portable way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.16-next.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ec8c2329: Add proxy configuration from env-vars to create-app tasks\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.15\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/backstage/backstage/commits/HEAD/packages/cli-common\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@backstage/plugin-techdocs-node` from 1.12.14 to 1.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/backstage/backstage/blob/master/plugins/techdocs-node/CHANGELOG.md\"\u003e\u003ccode\u003e@​backstage/plugin-techdocs-node\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.14.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003cli\u003e3c455d4: Some security fixes\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.20.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration-aws-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.20\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-search-common\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.2.22\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.14.2-next.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e3c455d4: Some security fixes\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.20.0-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0-next.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.14.1-next.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration-aws-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.20-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-search-common\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.2.22-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.19.3-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/catalog-model\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.6\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/config\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.3.6\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/errors\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.2.7\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-techdocs-common\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.14.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e63c459c: \u003cstrong\u003eBREAKING:\u003c/strong\u003e It's now possible to use the credentials from the \u003ccode\u003eintegrations.awsS3\u003c/code\u003e config to authenticate with AWS S3. The new priority is:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003e\u003ccode\u003eaws.accounts\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etechdocs.publisher.awsS3.credentials\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eintegrations.awsS3\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDefault credential chain\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003eIn case of multiple \u003ccode\u003eintegrations.awsS3\u003c/code\u003e are present, the target integration is determined by the \u003ccode\u003eaccessKeyId\u003c/code\u003e in \u003ccode\u003etechdocs.publisher.awsS3.credentials\u003c/code\u003e if provided. Otherwise, the default credential chain is used.\u003c/p\u003e\n\u003cp\u003eThis means that depending on your setup, this feature may break your existing setup.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/backstage/backstage/commits/v1.14.2/plugins/techdocs-node\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 2.1.5 to 2.2.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.2.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e38f9a61f: Update package dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [38f9a61f]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [661f1d60]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.3.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.3.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.2.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.12.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/a53fe369122851e1566f28f8cf2d60a3727fbf20\"\u003e\u003ccode\u003ea53fe36\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/38f9a61f2a3c5395a9d7b4e8ee77dd3ea4825290\"\u003e\u003ccode\u003e38f9a61\u003c/code\u003e\u003c/a\u003e chore: bulk upgrade npm dependencies (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1202\"\u003e#1202\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@2.2.0/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.7.5 to 1.13.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.5\u003c/h2\u003e\n\u003ch2\u003eRelease 1.13.5\u003c/h2\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fixed a potential \u003cstrong\u003eDenial of Service\u003c/strong\u003e issue involving the \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBug fix:\u003c/strong\u003e Resolved an issue where \u003ccode\u003eAxiosError\u003c/code\u003e could be missing the \u003ccode\u003estatus\u003c/code\u003e field on and after \u003cstrong\u003ev1.13.3\u003c/strong\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch4\u003eSecurity\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix Denial of Service via \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix/5657. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7313\"\u003e#7313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure \u003ccode\u003estatus\u003c/code\u003e is present in \u003ccode\u003eAxiosError\u003c/code\u003e on and after v1.13.3. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFeatures / Improvements\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAdd input validation to \u003ccode\u003eisAbsoluteURL\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRefactor: bump minor package versions. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7356\"\u003e#7356\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDocumentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eClarify object-check comment. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix deprecated \u003ccode\u003eBuffer\u003c/code\u003e constructor usage and README formatting. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCI / Maintenance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eChore: fix issues with YAML. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7355\"\u003e#7355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: update workflow YAMLs. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: fix run condition. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDev deps: bump \u003ccode\u003ekarma-sourcemap-loader\u003c/code\u003e from 0.3.8 to 0.4.0. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChore(release): prepare release 1.13.5. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sachin11063\"\u003e\u003ccode\u003e@​sachin11063\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/asmitha-16\"\u003e\u003ccode\u003e@​asmitha-16\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog:\u003c/strong\u003e \u003ca href=\"https://github.com/axios/axios/compare/v1.13.4...v1.13.5\"\u003ehttps://github.com/axios/axios/compare/v1.13.4...v1.13.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.13.4\u003c/h2\u003e\n\u003ch2\u003eOverview\u003c/h2\u003e\n\u003cp\u003eThe release addresses issues discovered in v1.13.3 and includes significant CI/CD improvements.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v1.13.3...v1.13.4\"\u003ev1.13.3...v1.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's New in v1.13.4\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix: issues with version 1.13.3\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7352\"\u003e#7352\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ee90dfc28abffbb61e24974b2bd3139a4a40ac76\"\u003eee90dfc\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixed issues discovered in v1.13.3 release\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7...\n\n_Description has been truncated_","html_url":"https://github.com/ssushant0011/backstage-plugins-for-aws/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ssushant0011%2Fbackstage-plugins-for-aws/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"},{"uuid":"3972278027","node_id":"PR_kwDOI8dS2c7FWfe8","number":82,"state":"open","title":"build(deps): bump the npm_and_yarn group across 1 directory with 21 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-21T16:08:14.000Z","updated_at":"2026-02-24T17:49:07.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":21,"packages":[{"name":"tsup","old_version":"7.1.0","new_version":"8.3.5","repository_url":"https://github.com/egoist/tsup"},{"name":"@nestjs/common","old_version":"10.4.4","new_version":"10.4.16","repository_url":"https://github.com/nestjs/nest"},{"name":"@apollo/server","old_version":"4.11.3","new_version":"5.4.0","repository_url":"https://github.com/apollographql/apollo-server"},{"name":"nodemailer","old_version":"7.0.5","new_version":"7.0.11","repository_url":"https://github.com/nodemailer/nodemailer"},{"name":"mjml","old_version":"4.15.3","new_version":"4.18.0","repository_url":"https://github.com/mjmlio/mjml"},{"name":"@babel/traverse","old_version":"7.21.3","new_version":"7.29.0","repository_url":"https://github.com/babel/babel"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"axios","old_version":"1.3.4","new_version":"1.13.5","repository_url":"https://github.com/axios/axios"},{"name":"ejs","old_version":"3.1.9","new_version":"3.1.10","repository_url":"https://github.com/mde/ejs"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"semver","old_version":"5.7.1","new_version":"5.7.2","repository_url":"https://github.com/npm/node-semver"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"tar","old_version":"6.1.13","new_version":"6.2.1","repository_url":"https://github.com/isaacs/node-tar"},{"name":"validator","old_version":"13.15.15","new_version":"13.15.26","repository_url":"https://github.com/validatorjs/validator.js"},{"name":"vite","old_version":"7.1.2","new_version":"7.3.1","repository_url":"https://github.com/vitejs/vite"},{"name":"ws","old_version":"7.5.9","new_version":"7.5.10","repository_url":"https://github.com/websockets/ws"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 17 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [tsup](https://github.com/egoist/tsup) | `7.1.0` | `8.3.5` |\n| [@nestjs/common](https://github.com/nestjs/nest/tree/HEAD/packages/common) | `10.4.4` | `10.4.16` |\n| [@apollo/server](https://github.com/apollographql/apollo-server/tree/HEAD/packages/server) | `4.11.3` | `5.4.0` |\n| [nodemailer](https://github.com/nodemailer/nodemailer) | `7.0.5` | `7.0.11` |\n| [mjml](https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml) | `4.15.3` | `4.18.0` |\n| [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.21.3` | `7.29.0` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [axios](https://github.com/axios/axios) | `1.3.4` | `1.13.5` |\n| [ejs](https://github.com/mde/ejs) | `3.1.9` | `3.1.10` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.13` | `6.2.1` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.15.15` | `13.15.26` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.1.2` | `7.3.1` |\n| [ws](https://github.com/websockets/ws) | `7.5.9` | `7.5.10` |\n\n\nUpdates `tsup` from 7.1.0 to 8.3.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/egoist/tsup/releases\"\u003etsup's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.3.5\u003c/h2\u003e\n\u003ch3\u003e   🐞 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRun \u003ccode\u003eexperimentalDts\u003c/code\u003e only once  -  by \u003ca href=\"https://github.com/aryaemami59\"\u003e\u003ccode\u003e@​aryaemami59\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1236\"\u003eegoist/tsup#1236\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/fddd451\"\u003e\u003c!-- raw HTML omitted --\u003e(fddd4)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.4...v8.3.5\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.4\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eNo significant changes\u003c/em\u003e\u003c/p\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.3...v8.3.4\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eNo significant changes\u003c/em\u003e\u003c/p\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.2...v8.3.3\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.1\u003c/h2\u003e\n\u003ch3\u003e   🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ees2024\u003c/code\u003e target  -  by \u003ca href=\"https://github.com/sxzz\"\u003e\u003ccode\u003e@​sxzz\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/4c8cd7f\"\u003e\u003c!-- raw HTML omitted --\u003e(4c8cd)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e   🐞 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport TS 5.6 for svelte  -  by \u003ca href=\"https://github.com/sxzz\"\u003e\u003ccode\u003e@​sxzz\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/28b9ce9\"\u003e\u003c!-- raw HTML omitted --\u003e(28b9c)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eneutral\u003c/code\u003e value to platform options in \u003ccode\u003eschema.json\u003c/code\u003e  -  by \u003ca href=\"https://github.com/venables\"\u003e\u003ccode\u003e@​venables\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/982\"\u003eegoist/tsup#982\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/a03db4c\"\u003e\u003c!-- raw HTML omitted --\u003e(a03db)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWider restriction for \u003ccode\u003etarget\u003c/code\u003e option  -  by \u003ca href=\"https://github.com/odanado\"\u003e\u003ccode\u003e@​odanado\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1118\"\u003eegoist/tsup#1118\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/1979b06\"\u003e\u003c!-- raw HTML omitted --\u003e(1979b)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eterser\u003c/code\u003e value to \u003ccode\u003eminify\u003c/code\u003e option in \u003ccode\u003eschema.json\u003c/code\u003e  -  by \u003ca href=\"https://github.com/damienbutt\"\u003e\u003ccode\u003e@​damienbutt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/991\"\u003eegoist/tsup#991\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/34951bf\"\u003e\u003c!-- raw HTML omitted --\u003e(34951)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003enewlineKind\u003c/code\u003e to \u003ccode\u003elf\u003c/code\u003e for \u003ccode\u003eexperimentalDts\u003c/code\u003e  -  by \u003ca href=\"https://github.com/aryaemami59\"\u003e\u003ccode\u003e@​aryaemami59\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1234\"\u003eegoist/tsup#1234\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/4584b89\"\u003e\u003c!-- raw HTML omitted --\u003e(4584b)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable rollup \u003ccode\u003eoutput.compact\u003c/code\u003e when minify is enabled  -  by \u003ca href=\"https://github.com/hyrious\"\u003e\u003ccode\u003e@​hyrious\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1232\"\u003eegoist/tsup#1232\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/9cc86d6\"\u003e\u003c!-- raw HTML omitted --\u003e(9cc86)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eNode16\u003c/code\u003e and \u003ccode\u003eNodeNext\u003c/code\u003e module resolution in \u003ccode\u003eexperimentalDts\u003c/code\u003e  -  by \u003ca href=\"https://github.com/aryaemami59\"\u003e\u003ccode\u003e@​aryaemami59\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1225\"\u003eegoist/tsup#1225\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/41c98ff\"\u003e\u003c!-- raw HTML omitted --\u003e(41c98)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.0...v8.3.1\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/egoist/tsup/compare/v8.2.4...v8.3.0\"\u003e8.3.0\u003c/a\u003e (2024-09-17)\u003c/h1\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ccode\u003eexperimentalDts\u003c/code\u003e file cleaning and watching (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1199\"\u003e#1199\u003c/a\u003e) (\u003ca href=\"https://github.com/egoist/tsup/commit/76dc18b7036c408e6fc5254e3eeb3430f65c7866\"\u003e76dc18b\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for \u003ccode\u003ects\u003c/code\u003e and \u003ccode\u003emts\u003c/code\u003e config files (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1178\"\u003e#1178\u003c/a\u003e) (\u003ca href=\"https://github.com/egoist/tsup/commit/ec811b3b7d22479c230292a024f1dee5d171b0ea\"\u003eec811b3\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd support for async \u003ccode\u003einjectStyle\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1193\"\u003e#1193\u003c/a\u003e) (\u003ca href=\"https://github.com/egoist/tsup/commit/f25a9db77d22c91ea8f6bd1ed31ea8415d0a7d5d\"\u003ef25a9db\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev8.2.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/egoist/tsup/compare/v8.2.3...v8.2.4\"\u003e8.2.4\u003c/a\u003e (2024-08-02)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/cd03e1e00ec2bd6676ae1837cbc7e618ab6a2362\"\u003e\u003ccode\u003ecd03e1e\u003c/code\u003e\u003c/a\u003e chore: release v8.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/fddd451c3d63cd5f851a0e7ab091c0550e24f213\"\u003e\u003ccode\u003efddd451\u003c/code\u003e\u003c/a\u003e fix: run \u003ccode\u003eexperimentalDts\u003c/code\u003e only once (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1236\"\u003e#1236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/21b119374880e9d9109c5d8658429678a1de8f45\"\u003e\u003ccode\u003e21b1193\u003c/code\u003e\u003c/a\u003e chore: release v8.3.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/580e03dc996107c4790c64df5b9ca6cebb4b7de9\"\u003e\u003ccode\u003e580e03d\u003c/code\u003e\u003c/a\u003e ci: fix release workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/01b38f295f6e1fa240676213817a9d315fdffd60\"\u003e\u003ccode\u003e01b38f2\u003c/code\u003e\u003c/a\u003e chore: release v8.3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/4f5b71e42887a5147ee6d95d2d7f89f789887f0d\"\u003e\u003ccode\u003e4f5b71e\u003c/code\u003e\u003c/a\u003e ci: fix release workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/e80dad6889366941e015faadce05cbe2eeca3c17\"\u003e\u003ccode\u003ee80dad6\u003c/code\u003e\u003c/a\u003e chore: release v8.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/f4af79a1b890307a28d0d986a0c06dc92192c222\"\u003e\u003ccode\u003ef4af79a\u003c/code\u003e\u003c/a\u003e ci: fix release workflow (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1241\"\u003e#1241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/4b72d61a8e7a2e450e71ffe8806739f2e1122f54\"\u003e\u003ccode\u003e4b72d61\u003c/code\u003e\u003c/a\u003e chore: release v8.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/41c98ff07aa03ef0e9d65407b20c9465acbf0d83\"\u003e\u003ccode\u003e41c98ff\u003c/code\u003e\u003c/a\u003e fix: support \u003ccode\u003eNode16\u003c/code\u003e and \u003ccode\u003eNodeNext\u003c/code\u003e module resolution in \u003ccode\u003eexperimentalDts\u003c/code\u003e (...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/egoist/tsup/compare/v7.1.0...v8.3.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/common` from 10.4.4 to 10.4.16\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/nest/releases\"\u003e\u003ccode\u003e@​nestjs/common\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev10.4.16\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(common): introduce magic file type validator to nestjs common by \u003ca href=\"https://github.com/Chathula\"\u003e\u003ccode\u003e@​Chathula\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14948\"\u003enestjs/nest#14948\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v10.4.15...v10.4.16\"\u003ehttps://github.com/nestjs/nest/compare/v10.4.15...v10.4.16\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev10.4.15 (2024-12-09)\u003c/h2\u003e\n\u003ch4\u003eDependencies\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eplatform-express\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14282\"\u003e#14282\u003c/a\u003e fix(deps): update dependency express to v4.21.2 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev10.4.13 (2024-12-03)\u003c/h2\u003e\n\u003ch4\u003eBug fixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecommon\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14256\"\u003e#14256\u003c/a\u003e chore(common): Add type declaration for RawBody decorator with pipes (\u003ca href=\"https://github.com/sapenlei\"\u003e\u003ccode\u003e@​sapenlei\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDependencies\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14257\"\u003e#14257\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​fastify/static\u003c/code\u003e to v7.0.4 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14258\"\u003e#14258\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​nestjs/sequelize\u003c/code\u003e to v10.0.1 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14249\"\u003e#14249\u003c/a\u003e chore(deps): bump \u003ccode\u003e@​apollo/gateway\u003c/code\u003e from 2.4.8 to 2.8.5 in /sample/32-graphql-federation-schema-first/users-application (\u003ca href=\"https://github.com/apps/dependabot\"\u003e\u003ccode\u003e@​dependabot[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14250\"\u003e#14250\u003c/a\u003e chore(deps): update jest monorepo (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14245\"\u003e#14245\u003c/a\u003e chore(deps): update dependency mqtt to v5.10.3 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14247\"\u003e#14247\u003c/a\u003e fix(deps): update nest monorepo to v10.4.12 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14251\"\u003e#14251\u003c/a\u003e chore(deps-dev): bump graphql-tools from 9.0.3 to 9.0.5 (\u003ca href=\"https://github.com/apps/dependabot\"\u003e\u003ccode\u003e@​dependabot[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14246\"\u003e#14246\u003c/a\u003e chore(deps): update nest monorepo (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 3\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eKamil Mysliwiec (\u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMicael Levi L. Cavalcante (\u003ca href=\"https://github.com/micalevisk\"\u003e\u003ccode\u003e@​micalevisk\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esapenlei (\u003ca href=\"https://github.com/sapenlei\"\u003e\u003ccode\u003e@​sapenlei\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev10.4.12 (2024-11-29)\u003c/h2\u003e\n\u003ch4\u003eBug fixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecommon\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14241\"\u003e#14241\u003c/a\u003e fix(common): enforce string type in validationpipe (\u003ca href=\"https://github.com/LhonRafaat\"\u003e\u003ccode\u003e@​LhonRafaat\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDependencies\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eOther\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14243\"\u003e#14243\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/node\u003c/code\u003e to v20.17.9 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14240\"\u003e#14240\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/multer\u003c/code\u003e to v1.4.12 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14239\"\u003e#14239\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/chai\u003c/code\u003e to v4.3.20 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14237\"\u003e#14237\u003c/a\u003e chore(deps): update confluentinc/cp-zookeeper docker tag to v7.7.2 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14236\"\u003e#14236\u003c/a\u003e chore(deps): update confluentinc/cp-kafka docker tag to v7.7.2 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/12253\"\u003e#12253\u003c/a\u003e fix(deps): update apollo graphql packages (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14235\"\u003e#14235\u003c/a\u003e chore(deps-dev): bump \u003ccode\u003e@​commitlint/config-angular\u003c/code\u003e from 19.5.0 to 19.6.0 (\u003ca href=\"https://github.com/apps/dependabot\"\u003e\u003ccode\u003e@​dependabot[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14233\"\u003e#14233\u003c/a\u003e chore(deps): update nest monorepo (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6c8aec63b4828ecb96dd62c5c5edb838539c45e6\"\u003e\u003ccode\u003e6c8aec6\u003c/code\u003e\u003c/a\u003e chore(\u003ca href=\"https://github.com/nestjs\"\u003e\u003ccode\u003e@​nestjs\u003c/code\u003e\u003c/a\u003e) publish v10.4.16 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/2b9e132f6a3bb60f450076d0eacbef23be17a3c0\"\u003e\u003ccode\u003e2b9e132\u003c/code\u003e\u003c/a\u003e chore: update outdated tests, make file-type optional\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/cb0d6506b34f771c3946be1c6b980abaad31a348\"\u003e\u003ccode\u003ecb0d650\u003c/code\u003e\u003c/a\u003e chore: remove duplicate packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6196ab21502e762e4f497867a7f265047b4e0cd6\"\u003e\u003ccode\u003e6196ab2\u003c/code\u003e\u003c/a\u003e Merge branch 'Chathula-fix-nestjs-common-mime-validator'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/0ac7959927d0787a19039ed9eafe61d15ed10143\"\u003e\u003ccode\u003e0ac7959\u003c/code\u003e\u003c/a\u003e chore: minor tweaks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/312a54ae2e20bd294ef1ccd5b6ca8476714c8a5a\"\u003e\u003ccode\u003e312a54a\u003c/code\u003e\u003c/a\u003e Update packages/common/pipes/file/file-type.validator.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/a28fc033f49ce7ec0432478a52d2a9a518d896d4\"\u003e\u003ccode\u003ea28fc03\u003c/code\u003e\u003c/a\u003e refactor(common): move back file type validator options type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/07b4b3829ebefc897ad547a08d9e954e5d13f2ce\"\u003e\u003ccode\u003e07b4b38\u003c/code\u003e\u003c/a\u003e refactor(common): move file-type package to peer dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/0b7af8ab0777ba6fcebaa4c9c958b77b1fb95326\"\u003e\u003ccode\u003e0b7af8a\u003c/code\u003e\u003c/a\u003e refactor(common): refactor code to use simple eval\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6953b7a79e3e326eac01875806ee3f984fe702da\"\u003e\u003ccode\u003e6953b7a\u003c/code\u003e\u003c/a\u003e fix(common): used eval import\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nestjs/nest/commits/v10.4.16/packages/common\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@apollo/server` from 4.11.3 to 5.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apollographql/apollo-server/releases\"\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server-integration-testsuite\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.4.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.4.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/phryneas\"\u003e\u003ccode\u003e@​phryneas\u003c/code\u003e\u003c/a\u003e! - ⚠️ SECURITY \u003ccode\u003e@apollo/server/standalone\u003c/code\u003e:\u003c/p\u003e\n\u003cp\u003eThe default configuration of \u003ccode\u003estartStandaloneServer\u003c/code\u003e was vulnerable to denial of service (DoS) attacks through specially crafted request bodies with exotic character set encodings.\u003c/p\u003e\n\u003cp\u003eIn accordance with \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc7159#section-8.1\"\u003eRFC 7159\u003c/a\u003e, we now only accept request bodies encoded in UTF-8, UTF-16 (LE or BE), or UTF-32 (LE or BE).\nAny other character set will be rejected with a \u003ccode\u003e415 Unsupported Media Type\u003c/code\u003e error.\nNote that the more recent JSON RFC, \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc8259#section-8.1\"\u003eRFC 8259\u003c/a\u003e, is more strict and will only allow UTF-8.\nSince this is a minor release, we have chosen to remain compatible with the more permissive RFC 7159 for now.\nIn a future major release, we may tighten this restriction further to only allow UTF-8.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eIf you were not using \u003ccode\u003estartStandaloneServer\u003c/code\u003e, you were not affected by this vulnerability.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eGenerally, please note that we provide \u003ccode\u003estartStandaloneServer\u003c/code\u003e as a convenience tool for quickly getting started with Apollo Server.\nFor production deployments, we recommend using Apollo Server with a more fully-featured web server framework such as Express, Koa, or Fastify, where you have more control over security-related configuration options.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server-integration-testsuite\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.3.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.3.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8062\"\u003e#8062\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/cristunaranjo\"\u003e\u003ccode\u003e@​cristunaranjo\u003c/code\u003e\u003c/a\u003e! - Allow configuration of graphql execution options (maxCoercionErrors)\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n  resolvers,\n  executionOptions: {\n    maxCoercionErrors: 50,\n  },\n});\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8014\"\u003e#8014\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/mo4islona\"\u003e\u003ccode\u003e@​mo4islona\u003c/code\u003e\u003c/a\u003e! - Expose \u003ccode\u003egraphql\u003c/code\u003e validation options.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apollographql/apollo-server/blob/main/packages/server/CHANGELOG.md\"\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.4.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/phryneas\"\u003e\u003ccode\u003e@​phryneas\u003c/code\u003e\u003c/a\u003e! - ⚠️ SECURITY \u003ccode\u003e@apollo/server/standalone\u003c/code\u003e:\u003c/p\u003e\n\u003cp\u003eThe default configuration of \u003ccode\u003estartStandaloneServer\u003c/code\u003e was vulnerable to denial of service (DoS) attacks through specially crafted request bodies with exotic character set encodings.\u003c/p\u003e\n\u003cp\u003eIn accordance with \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc7159#section-8.1\"\u003eRFC 7159\u003c/a\u003e, we now only accept request bodies encoded in UTF-8, UTF-16 (LE or BE), or UTF-32 (LE or BE).\nAny other character set will be rejected with a \u003ccode\u003e415 Unsupported Media Type\u003c/code\u003e error.\nNote that the more recent JSON RFC, \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc8259#section-8.1\"\u003eRFC 8259\u003c/a\u003e, is more strict and will only allow UTF-8.\nSince this is a minor release, we have chosen to remain compatible with the more permissive RFC 7159 for now.\nIn a future major release, we may tighten this restriction further to only allow UTF-8.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eIf you were not using \u003ccode\u003estartStandaloneServer\u003c/code\u003e, you were not affected by this vulnerability.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eGenerally, please note that we provide \u003ccode\u003estartStandaloneServer\u003c/code\u003e as a convenience tool for quickly getting started with Apollo Server.\nFor production deployments, we recommend using Apollo Server with a more fully-featured web server framework such as Express, Koa, or Fastify, where you have more control over security-related configuration options.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8062\"\u003e#8062\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/cristunaranjo\"\u003e\u003ccode\u003e@​cristunaranjo\u003c/code\u003e\u003c/a\u003e! - Allow configuration of graphql execution options (maxCoercionErrors)\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n  resolvers,\n  executionOptions: {\n    maxCoercionErrors: 50,\n  },\n});\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8014\"\u003e#8014\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/mo4islona\"\u003e\u003ccode\u003e@​mo4islona\u003c/code\u003e\u003c/a\u003e! - Expose \u003ccode\u003egraphql\u003c/code\u003e validation options.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n  resolvers,\n  validationOptions: {\n    maxErrors: 10,\n  },\n});\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/ad45d1505d867de4c2761b7935855445ef7641e7\"\u003e\u003ccode\u003ead45d15\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8179\"\u003e#8179\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/443e54747d44c1d7c213d019936514dec024b450\"\u003e\u003ccode\u003e443e547\u003c/code\u003e\u003c/a\u003e fix repository urls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/28d6d47ff636751807141267c329acb736c177b6\"\u003e\u003ccode\u003e28d6d47\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8172\"\u003e#8172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e feat: Allow configuration of graphql validation options \u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8014\"\u003e#8014\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/f2c16a7caff895a8b97c5a800405795cb19ba624\"\u003e\u003ccode\u003ef2c16a7\u003c/code\u003e\u003c/a\u003e bump dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e feat: Allow configuration of graphql execution options(maxCoercionErrors)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/7be3686ae62fb04bb4d0bfddb465d5e89631d4e4\"\u003e\u003ccode\u003e7be3686\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8163\"\u003e#8163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/51acbebde7cc2759efacaa9eccb10aa3fee6b368\"\u003e\u003ccode\u003e51acbeb\u003c/code\u003e\u003c/a\u003e Require legacy incremental execute as an \u003ccode\u003eApolloServer\u003c/code\u003e option instead of a d...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/ae1be2985814212bc4df3556c930cb84f7773381\"\u003e\u003ccode\u003eae1be29\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8155\"\u003e#8155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/apollographql/apollo-server/commits/@apollo/server@5.4.0/packages/server\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​apollo/server\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nodemailer` from 7.0.5 to 7.0.11\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodemailer/nodemailer/releases\"\u003enodemailer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.11\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.10...v7.0.11\"\u003e7.0.11\u003c/a\u003e (2025-11-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eprevent stack overflow DoS in addressparser with deeply nested groups (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003eb61b9c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.9...v7.0.10\"\u003e7.0.10\u003c/a\u003e (2025-10-23)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncrease data URI size limit from 100KB to 50MB and preserve content type (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e28dbf3f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.8...v7.0.9\"\u003e7.0.9\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e Trying to fix release proecess by upgrading Node version in runner (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/579fce4683eb588891613a6c9a00d8092e8c62d1\"\u003e579fce4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.7...v7.0.8\"\u003e7.0.8\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e flatten nested groups per RFC 5322 (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/8f8a77c67f0ba94ddf4e16c68f604a5920fb5d26\"\u003e8f8a77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.7\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.6...v7.0.7\"\u003e7.0.7\u003c/a\u003e (2025-10-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e Fixed addressparser handling of quoted nested email addresses (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626\"\u003e1150d99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edns:\u003c/strong\u003e add memory leak prevention for DNS cache (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/0240d6795ded6d8008d102161a729f120b6d786a\"\u003e0240d67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elinter:\u003c/strong\u003e Updated eslint and created prettier formatting task (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/df13b7487e368acded35e45d0887d23c89c9177a\"\u003edf13b74\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefresh expired DNS cache on error (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1759\"\u003e#1759\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/ea0fc5a6633a3546f4b00fcf2f428e9ca732cdb6\"\u003eea0fc5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve linter errors in DNS cache tests (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3b8982c1f24508089a8757b74039000a4498b158\"\u003e3b8982c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6\"\u003e7.0.6\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md\"\u003enodemailer's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.10...v7.0.11\"\u003e7.0.11\u003c/a\u003e (2025-11-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eprevent stack overflow DoS in addressparser with deeply nested groups (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003eb61b9c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.9...v7.0.10\"\u003e7.0.10\u003c/a\u003e (2025-10-23)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncrease data URI size limit from 100KB to 50MB and preserve content type (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e28dbf3f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.8...v7.0.9\"\u003e7.0.9\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e Trying to fix release proecess by upgrading Node version in runner (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/579fce4683eb588891613a6c9a00d8092e8c62d1\"\u003e579fce4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.7...v7.0.8\"\u003e7.0.8\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e flatten nested groups per RFC 5322 (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/8f8a77c67f0ba94ddf4e16c68f604a5920fb5d26\"\u003e8f8a77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.6...v7.0.7\"\u003e7.0.7\u003c/a\u003e (2025-10-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e Fixed addressparser handling of quoted nested email addresses (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626\"\u003e1150d99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edns:\u003c/strong\u003e add memory leak prevention for DNS cache (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/0240d6795ded6d8008d102161a729f120b6d786a\"\u003e0240d67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elinter:\u003c/strong\u003e Updated eslint and created prettier formatting task (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/df13b7487e368acded35e45d0887d23c89c9177a\"\u003edf13b74\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefresh expired DNS cache on error (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1759\"\u003e#1759\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/ea0fc5a6633a3546f4b00fcf2f428e9ca732cdb6\"\u003eea0fc5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve linter errors in DNS cache tests (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3b8982c1f24508089a8757b74039000a4498b158\"\u003e3b8982c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6\"\u003e7.0.6\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eencoder:\u003c/strong\u003e avoid silent data loss by properly flushing trailing base64 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1747\"\u003e#1747\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/01ae76f2cfe991c0c3fe80170f236da60531496b\"\u003e01ae76f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehandle multiple XOAUTH2 token requests correctly (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1754\"\u003e#1754\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/dbe00286351cddf012726a41a96ae613d30a34ee\"\u003edbe0028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReDoS vulnerability in parseDataURI and _processDataUrl (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1755\"\u003e#1755\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/90b3e24d23929ebf9f4e16261049b40ee4055a39\"\u003e90b3e24\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3d17dbec49ab3e3f0e13e62871e5534be5b99994\"\u003e\u003ccode\u003e3d17dbe\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.11 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1783\"\u003e#1783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/15879f8bd5a94fe608fd7cf1d3142de14527eadf\"\u003e\u003ccode\u003e15879f8\u003c/code\u003e\u003c/a\u003e Bumped dev dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003e\u003ccode\u003eb61b9c0\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow DoS in addressparser with deeply nested groups\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/4175e4baf92ffc4e20791a11fc0886025228a2ac\"\u003e\u003ccode\u003e4175e4b\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.10 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1776\"\u003e#1776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/d882ccfe8d37723e7017c1966608dcf8217d8a82\"\u003e\u003ccode\u003ed882ccf\u003c/code\u003e\u003c/a\u003e Merge branch 'master' of github.com:nodemailer/nodemailer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1d7e4f786bccdc3e0a1bf0140d07ce5aaf29d82a\"\u003e\u003ccode\u003e1d7e4f7\u003c/code\u003e\u003c/a\u003e Bumped deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/10bd871656b331a674feabbcfc1d6363918cb244\"\u003e\u003ccode\u003e10bd871\u003c/code\u003e\u003c/a\u003e chore: correct typo in variable name (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1773\"\u003e#1773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e\u003ccode\u003e28dbf3f\u003c/code\u003e\u003c/a\u003e fix: Increase data URI size limit from 100KB to 50MB and preserve content type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/92ae1c49e3a33767996db9ddfd04784a7b9595d7\"\u003e\u003ccode\u003e92ae1c4\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.9 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1769\"\u003e#1769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/c675d9e7e57d0d90bde7d71afb0b2739fc071233\"\u003e\u003ccode\u003ec675d9e\u003c/code\u003e\u003c/a\u003e Merge branch 'master' of github.com:nodemailer/nodemailer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for nodemailer since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `mjml` from 4.15.3 to 4.18.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/mjmlio/mjml/releases\"\u003emjml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eContent updates by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3021\"\u003emjmlio/mjml#3021\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mjmlio/mjml/compare/v4.17.2...v4.18.0\"\u003ehttps://github.com/mjmlio/mjml/compare/v4.17.2...v4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emj-section: do not inherit attributes from context \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3019\"\u003e#3019\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3020\"\u003emjmlio/mjml#3020\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mjmlio/mjml/compare/v4.17.1...v4.17.2\"\u003ehttps://github.com/mjmlio/mjml/compare/v4.17.1...v4.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emjml-wrapper: allowed attributes not inheriting \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3011\"\u003e#3011\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3012\"\u003emjmlio/mjml#3012\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mjmlio/mjml/compare/v4.17.0...v4.17.1\"\u003ehttps://github.com/mjmlio/mjml/compare/v4.17.0...v4.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emjml-wrapper: add gap between sections \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2977\"\u003e#2977\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3004\"\u003emjmlio/mjml#3004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emjml-social: respect align and icon-height attributes \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3001\"\u003e#3001\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3002\"\u003emjmlio/mjml#3002\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-carousel: hide thumbnails if not supported  \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2999\"\u003e#2999\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3000\"\u003emjmlio/mjml#3000\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-accordion: respect font-family and padding-x attributes  \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2997\"\u003e#2997\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2998\"\u003emjmlio/mjml#2998\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-table: respect cellspacing \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2995\"\u003e#2995\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2996\"\u003emjmlio/mjml#2996\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-navbar: fix ico-padding-x that was not working \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2991\"\u003e#2991\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2992\"\u003emjmlio/mjml#2992\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-column: fix border-radius that was not working \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2989\"\u003e#2989\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2990\"\u003emjmlio/mjml#2990\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded link to support matrix by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3005\"\u003emjmlio/mjml#3005\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate image URLs by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3007\"\u003emjmlio/mjml#3007\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExamples indenting by \u003ca href=\"https://github.com/EtienneHosman\"\u003e\u003ccode\u003e@​EtienneHosman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2974\"\u003emjmlio/mjml#2974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/7f4872c48af877d98448335fb9002585cfc8fcbf\"\u003e\u003ccode\u003e7f4872c\u003c/code\u003e\u003c/a\u003e v4.18.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/95b9ebdd28ce497f37d8c20160fbbd36df2d7d3e\"\u003e\u003ccode\u003e95b9ebd\u003c/code\u003e\u003c/a\u003e v4.17.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/3f3b0bcc5f297d9bc84999908c213bc42d9792eb\"\u003e\u003ccode\u003e3f3b0bc\u003c/code\u003e\u003c/a\u003e v4.17.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/375c593ce24485867db35a26218e9d89d4f386cc\"\u003e\u003ccode\u003e375c593\u003c/code\u003e\u003c/a\u003e v4.17.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/81f37eafac77ea80aeabb5ea4d7ffc4eb01263c3\"\u003e\u003ccode\u003e81f37ea\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2990\"\u003e#2990\u003c/a\u003e from mjmlio/bugfix/MJML-36-mj-column_border_radius\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/025e3fc31bb23422c8cde70332e1549249f380a1\"\u003e\u003ccode\u003e025e3fc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2992\"\u003e#2992\u003c/a\u003e from mjmlio/bugfix/MJML-37-mj-navbar_ico-padding-x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/424cac84c5286bf334982ed29a9e04ec3ec030a8\"\u003e\u003ccode\u003e424cac8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2996\"\u003e#2996\u003c/a\u003e from mjmlio/bugfix/MJML-39-mj-table-cellspacing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/4d975b09482a3aed157f92096a4ef29f9d0dfe3d\"\u003e\u003ccode\u003e4d975b0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2998\"\u003e#2998\u003c/a\u003e from mjmlio/bugfix/MJML-43-mj-accordion_font-family_...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/4d41b9d81eb08f930d93ed22d570192b9236d8e1\"\u003e\u003ccode\u003e4d41b9d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3000\"\u003e#3000\u003c/a\u003e from mjmlio/feature/MJML-49-mj-carousel_thumbnails_f...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/9bac7c6cb11cf88c0e9518a0b9e30262ea7414b1\"\u003e\u003ccode\u003e9bac7c6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3002\"\u003e#3002\u003c/a\u003e from mjmlio/bugfix/MJML-41-mj-social_align_icon-height\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/mjmlio/mjml/commits/v4.18.0/packages/mjml\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~totocap\"\u003etotocap\u003c/a\u003e, a new releaser for mjml since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/traverse` from 7.21.3 to 7.29.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/traverse\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.0 (2026-01-31)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e for your first PR!\u003c/p\u003e\n\u003ch4\u003e:rocket: New Feature\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17750\"\u003e#17750\u003c/a\u003e [7.x backport] Add attributes import declaration builder (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17663\"\u003e#17663\u003c/a\u003e [7.x backport] feat(standalone): export async transform (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17725\"\u003e#17725\u003c/a\u003e [7.x backport] feat: read standalone targets from data-targets (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17765\"\u003e#17765\u003c/a\u003e fix(parser): correctly parse type assertions in \u003ccode\u003eextends\u003c/code\u003e clause (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17723\"\u003e#17723\u003c/a\u003e [7.x backport] fix(parser): improve super type argument parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17708\"\u003e#17708\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentPath is given (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-block-scoping\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17737\"\u003e#17737\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates shadowing variable (\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17642\"\u003e#17642\u003c/a\u003e [Babel 7] Improve generator performance (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 6\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDavid (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aa8394e454337d118ac3d40bfa3ee1a3cb3f3ed2\"\u003e\u003ccode\u003eaa8394e\u003c/code\u003e\u003c/a\u003e v7.29.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/84366a8ea453814e732784db74cf2e2b6635eb6f\"\u003e\u003ccode\u003e84366a8\u003c/code\u003e\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentP...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/229eb452c5d5d2be0dc138ec2956aff7ff1057d7\"\u003e\u003ccode\u003e229eb45\u003c/code\u003e\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/905bc22b2fff23673eabe467815c67b29bf8bba2\"\u003e\u003ccode\u003e905bc22\u003c/code\u003e\u003c/a\u003e fix: lint errors in main branch (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17612\"\u003e#17612\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a03e2b63ae530674e866b60350b7eb4a5fcb5f59\"\u003e\u003ccode\u003ea03e2b6\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003epath.evaluate\u003c/code\u003e correctly returns \u003ccode\u003econfident\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17584\"\u003e#17584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aac2c37e11ad58905f7f9606103074e80bacbbcd\"\u003e\u003ccode\u003eaac2c37\u003c/code\u003e\u003c/a\u003e chore: Use Gulpfile.mts (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17579\"\u003e#17579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/65c4a6b3ee0e1d32801529e841572bb22534e1f3\"\u003e\u003ccode\u003e65c4a6b\u003c/code\u003e\u003c/a\u003e [Babel 8] fix: Improve \u003ccode\u003etraverse\u003c/code\u003e types (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17574\"\u003e#17574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c92c4919771105140015167f25f7bacac77c90d9\"\u003e\u003ccode\u003ec92c491\u003c/code\u003e\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17589\"\u003e#17589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.0/packages/babel-traverse\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/traverse\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.3.4 to 1.13.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.5\u003c/h2\u003e\n\u003ch2\u003eRelease 1.13.5\u003c/h2\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fixed a potential \u003cstrong\u003eDenial of Service\u003c/strong\u003e issue involving the \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBug fix:\u003c/strong\u003e Resolved an issue where \u003ccode\u003eAxiosError\u003c/code\u003e could be missing the \u003ccode\u003estatus\u003c/code\u003e field on and after \u003cstrong\u003ev1.13.3\u003c/strong\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch4\u003eSecurity\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix Denial of Service via \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix/5657. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7313\"\u003e#7313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure \u003ccode\u003estatus\u003c/code\u003e is present in \u003ccode\u003eAxiosError\u003c/code\u003e on and after v1.13.3. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFeatures / Improvements\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAdd input validation to \u003ccode\u003eisAbsoluteURL\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRefactor: bump minor package versions. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7356\"\u003e#7356\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDocumentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eClarify object-check comment. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix deprecated \u003ccode\u003eBuffer\u003c/code\u003e constructor usage and README formatting. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCI / Maintenance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eChore: fix issues with YAML. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7355\"\u003e#7355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: update workflow YAMLs. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: fix run condition. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDev deps: bump \u003ccode\u003ekarma-sourcemap-loader\u003c/code\u003e from 0.3.8 to 0.4.0. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChore(release): prepare release 1.13.5. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sachin11063\"\u003e\u003ccode\u003e@​sachin11063\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/asmitha-16\"\u003e\u003ccode\u003e@​asmitha-16\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog:\u003c/strong\u003e \u003ca href=\"https://github.com/axios/axios/compare/v1.13.4...v1.13.5\"\u003ehttps://github.com/axios/axios/compare/v1.13.4...v1.13.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.13.4\u003c/h2\u003e\n\u003ch2\u003eOverview\u003c/h2\u003e\n\u003cp\u003eThe release addresses issues discovered in v1.13.3 and includes significant CI/CD improvements.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v1.13.3...v1.13.4\"\u003ev1.13.3...v1.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's New in v1.13.4\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix: issues with version 1.13.3\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7352\"\u003e#7352\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ee90dfc28abffbb61e24974b2bd3139a4a40ac76\"\u003eee90dfc\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixed issues discovered in v1.13.3 release\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c...\n\n_Description has been truncated_","html_url":"https://github.com/SeedCompany/libs/pull/82","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/SeedCompany%2Flibs/issues/82","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/82/packages"},{"uuid":"3971422169","node_id":"PR_kwDOOMz7fs7FT6vo","number":6,"state":"closed","title":"Bump the npm_and_yarn group across 8 directories with 29 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-22T07:51:54.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-21T06:10:34.000Z","updated_at":"2026-02-22T07:51:56.000Z","time_to_close":92480,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":29,"packages":[{"name":"fastify","old_version":"4.17.0","new_version":"5.7.3","repository_url":"https://github.com/fastify/fastify"},{"name":"form-data","old_version":"4.0.0","new_version":"4.0.5","repository_url":"https://github.com/form-data/form-data"},{"name":"esbuild","old_version":"0.15.18","new_version":"0.27.3","repository_url":"https://github.com/evanw/esbuild"},{"name":"qs","old_version":"6.13.1","new_version":"6.14.2","repository_url":"https://github.com/ljharb/qs"},{"name":"brace-expansion","old_version":"2.0.1","new_version":"2.0.2","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"node-forge","old_version":"1.3.1","new_version":"1.3.3","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"tar","old_version":"6.1.14","new_version":"removed","repository_url":"https://github.com/isaacs/node-tar"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 10 updates in the /image.pollinations.ai directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [fastify](https://github.com/fastify/fastify) | `4.17.0` | `5.7.3` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.15.18` | `0.27.3` |\n| [qs](https://github.com/ljharb/qs) | `6.13.1` | `6.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.14` | `removed` |\n\nBumps the npm_and_yarn group with 2 updates in the /image.pollinations.ai/cloudflare-cache directory: [esbuild](https://github.com/evanw/esbuild) and [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler).\nBumps the npm_and_yarn group with 3 updates in the /image.pollinations.ai/image_gen_flux_zero directory: [brace-expansion](https://github.com/juliangruber/brace-expansion), [cookie](https://github.com/jshttp/cookie) and [path-to-regexp](https://github.com/pillarjs/path-to-regexp).\nBumps the npm_and_yarn group with 3 updates in the /pollinations-react directory: [esbuild](https://github.com/evanw/esbuild), [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) and [diff](https://github.com/kpdecker/jsdiff).\nBumps the npm_and_yarn group with 7 updates in the /pollinations-react/docs directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [glob](https://github.com/isaacs/node-glob) | `10.3.10` | `10.5.0` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [next](https://github.com/vercel/next.js) | `14.2.11` | `15.5.10` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [prismjs](https://github.com/PrismJS/prism) | `1.27.0` | `1.30.0` |\n\nBumps the npm_and_yarn group with 12 updates in the /pollinations.ai directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [form-data](https://github.com/form-data/form-data) | `3.0.2` | `3.0.4` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) | `2.0.7` | `2.0.9` |\n| [on-headers](https://github.com/jshttp/on-headers) | `1.0.2` | `1.1.0` |\n| [react-router](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router) | `6.28.1` | `6.30.3` |\n| [webpack](https://github.com/webpack/webpack) | `5.97.1` | `5.105.2` |\n\nBumps the npm_and_yarn group with 11 updates in the /text.pollinations.ai directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.1` | `3.5.4` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.9` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [axios](https://github.com/axios/axios) | `1.7.7` | `1.13.5` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `3.0.6` | `3.1.1` |\n\nBumps the npm_and_yarn group with 2 updates in the /text.pollinations.ai/cloudflare-cache directory: [esbuild](https://github.com/evanw/esbuild) and [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler).\n\nUpdates `fastify` from 4.17.0 to 5.7.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fastify/releases\"\u003efastify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.7.3\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c\"\u003ehttps://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c\u003c/a\u003e \u003ccode\u003eCVE-2026-25224\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update Reply.send() documentation for string serialization by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6466\"\u003efastify/fastify#6466\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: ignore agents config files by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6474\"\u003efastify/fastify#6474\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update vulnerability reporting to use GitHub Security by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6475\"\u003efastify/fastify#6475\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.2...v5.7.3\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.2...v5.7.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.2\u003c/h2\u003e\n\u003ch2\u003e⚠️ Notice ⚠️\u003c/h2\u003e\n\u003cp\u003eParsing of the \u003ccode\u003econtent-type\u003c/code\u003e header has been improved to a strict parser in PR \u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6414\"\u003e#6414\u003c/a\u003e. This means only header values in the form described in \u003ca href=\"https://httpwg.org/specs/rfc9110.html#field.content-type\"\u003eRFC 9110\u003c/a\u003e are accepted.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: npm ignore AI related files by \u003ca href=\"https://github.com/climba03003\"\u003e\u003ccode\u003e@​climba03003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6447\"\u003efastify/fastify#6447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update sponsor url by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6450\"\u003efastify/fastify#6450\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add fastify-http-exceptions to Ecosystem.md by \u003ca href=\"https://github.com/bhouston\"\u003e\u003ccode\u003e@​bhouston\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6442\"\u003efastify/fastify#6442\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix invalid shorten form schema example by \u003ca href=\"https://github.com/climba03003\"\u003e\u003ccode\u003e@​climba03003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6448\"\u003efastify/fastify#6448\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Simplify and tighten decorators example by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6451\"\u003efastify/fastify#6451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Fix incorrect variable use by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6455\"\u003efastify/fastify#6455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update sponsor link by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6460\"\u003efastify/fastify#6460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Fix MIT Licence file to conform to standard by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6464\"\u003efastify/fastify#6464\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: move querystringParser option under routerOptions by \u003ca href=\"https://github.com/inyourtime\"\u003e\u003ccode\u003e@​inyourtime\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6463\"\u003efastify/fastify#6463\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Updated content-type header parsing by \u003ca href=\"https://github.com/jsumners\"\u003e\u003ccode\u003e@​jsumners\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6414\"\u003efastify/fastify#6414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bhouston\"\u003e\u003ccode\u003e@​bhouston\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6442\"\u003efastify/fastify#6442\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.1...v5.7.2\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.1...v5.7.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Bump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6434\"\u003efastify/fastify#6434\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: updated version in the fastify.js by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6446\"\u003efastify/fastify#6446\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.0...v5.7.1\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.0...v5.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: Improved firebase serverless guide about process remaining stuck by \u003ca href=\"https://github.com/alexandercerutti\"\u003e\u003ccode\u003e@​alexandercerutti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6380\"\u003efastify/fastify#6380\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update migration guide with date-time breaking change by \u003ca href=\"https://github.com/craftsman01\"\u003e\u003ccode\u003e@​craftsman01\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6110\"\u003efastify/fastify#6110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove test file by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6384\"\u003efastify/fastify#6384\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: speed up loading with custom compiler by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6383\"\u003efastify/fastify#6383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: replace all instances of twitter.com with x.com by \u003ca href=\"https://github.com/cseas\"\u003e\u003ccode\u003e@​cseas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6355\"\u003efastify/fastify#6355\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/49468eddb7c59e07fb95183afbf03498fccac99e\"\u003e\u003ccode\u003e49468ed\u003c/code\u003e\u003c/a\u003e Bumped v5.7.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/eb11156396f6a5fedaceed0140aed2b7f026be37\"\u003e\u003ccode\u003eeb11156\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/d98ce2a0c030e18d27d93ed000788f95944ed910\"\u003e\u003ccode\u003ed98ce2a\u003c/code\u003e\u003c/a\u003e docs: update vulnerability reporting to use GitHub Security (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6475\"\u003e#6475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/17172c40506604fd15f8e5f17299b671d4b58686\"\u003e\u003ccode\u003e17172c4\u003c/code\u003e\u003c/a\u003e Ignore agents config files (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6474\"\u003e#6474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/b48826f07beaa925809c5e347d67a7e2502eb156\"\u003e\u003ccode\u003eb48826f\u003c/code\u003e\u003c/a\u003e docs: update Reply.send() documentation for string serialization (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6466\"\u003e#6466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/e1e4fe75910c36e1b9ebb87026ca16c053a9c1f2\"\u003e\u003ccode\u003ee1e4fe7\u003c/code\u003e\u003c/a\u003e v5.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/32d7b6add39ddf082d92579a58bea7018c5ac821\"\u003e\u003ccode\u003e32d7b6a\u003c/code\u003e\u003c/a\u003e chore: Updated content-type header parsing (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6414\"\u003e#6414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/f4a6ac1d0321e9f1757c165a2d423ccbefe7c9c9\"\u003e\u003ccode\u003ef4a6ac1\u003c/code\u003e\u003c/a\u003e docs: move querystringParser example under routerOptions (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6463\"\u003e#6463\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/2af83d64b53a0a786141d93edb9ffefac8b6446a\"\u003e\u003ccode\u003e2af83d6\u003c/code\u003e\u003c/a\u003e fix: Fix MIT Licence file to conform to standard (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6464\"\u003e#6464\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/5c14e05670c80455b99286ee0b6eac05eabec831\"\u003e\u003ccode\u003e5c14e05\u003c/code\u003e\u003c/a\u003e chore: update sponsor link (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6460\"\u003e#6460\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fastify/compare/4.17.0...v5.7.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 4.0.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.4...v4.0.5\"\u003ev4.0.5\u003c/a\u003e - 2025-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] Switch to newer v8 prediction library; enable node 24 testing \u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c90856375e498793c7\"\u003e\u003ccode\u003e5822467\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set Symbol.toStringTag in the proper place \u003ca href=\"https://github.com/form-data/form-data/commit/76d0dee43933b5e167f7f09e5d9cbbd1cf911aa7\"\u003e\u003ccode\u003e76d0dee\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/68ff7dda8834d6de095a7008cef0e03bc252ca98\"\u003e\u003ccode\u003e68ff7dd\u003c/code\u003e\u003c/a\u003e v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c90856375e498793c7\"\u003e\u003ccode\u003e5822467\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/76d0dee43933b5e167f7f09e5d9cbbd1cf911aa7\"\u003e\u003ccode\u003e76d0dee\u003c/code\u003e\u003c/a\u003e [Fix] set Symbol.toStringTag in the proper place\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e [Tests] Switch to newer v8 prediction library; enable node 24 testing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/41996f5ac73a867046d48512cab62e64fc846dad\"\u003e\u003ccode\u003e41996f5\u003c/code\u003e\u003c/a\u003e v4.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e [meta] actually ensure the readme backup isn’t published\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e [meta] fix readme capitalization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e [Tests] fix linting errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e [Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.0...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for form-data since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `esbuild` from 0.15.18 to 0.27.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/releases\"\u003eesbuild's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.27.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ePreserve URL fragments in data URLs (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4370\"\u003e#4370\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eConsider the following HTML, CSS, and SVG:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eindex.html\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"html\"\u003e\u003ccode\u003e\u0026lt;!DOCTYPE html\u0026gt;\n\u0026lt;html\u0026gt;\n  \u0026lt;head\u0026gt;\u0026lt;link rel=\u0026quot;stylesheet\u0026quot; href=\u0026quot;icons.css\u0026quot;\u0026gt;\u0026lt;/head\u0026gt;\n  \u0026lt;body\u0026gt;\u0026lt;div class=\u0026quot;triangle\u0026quot;\u0026gt;\u0026lt;/div\u0026gt;\u0026lt;/body\u0026gt;\n\u0026lt;/html\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eicons.css\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e.triangle {\n  width: 10px;\n  height: 10px;\n  background: currentColor;\n  clip-path: url(./triangle.svg#x);\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003etriangle.svg\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"xml\"\u003e\u003ccode\u003e\u0026lt;svg xmlns=\u0026quot;http://www.w3.org/2000/svg\u0026quot;\u0026gt;\n  \u0026lt;defs\u0026gt;\n    \u0026lt;clipPath id=\u0026quot;x\u0026quot;\u0026gt;\n      \u0026lt;path d=\u0026quot;M0 0H10V10Z\u0026quot;/\u0026gt;\n    \u0026lt;/clipPath\u0026gt;\n  \u0026lt;/defs\u0026gt;\n\u0026lt;/svg\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThe CSS uses a URL fragment (the \u003ccode\u003e#x\u003c/code\u003e) to reference the \u003ccode\u003eclipPath\u003c/code\u003e element in the SVG file. Previously esbuild's CSS bundler didn't preserve the URL fragment when bundling the SVG using the \u003ccode\u003edataurl\u003c/code\u003e loader, which broke the bundled CSS. With this release, esbuild will now preserve the URL fragment in the bundled CSS:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e/* icons.css */\n.triangle {\n  width: 10px;\n  height: 10px;\n  background: currentColor;\n  clip-path: url('data:image/svg+xml,\u0026lt;svg xmlns=\u0026quot;http://www.w3.org/2000/svg\u0026quot;\u0026gt;\u0026lt;defs\u0026gt;\u0026lt;clipPath id=\u0026quot;x\u0026quot;\u0026gt;\u0026lt;path d=\u0026quot;M0 0H10V10Z\u0026quot;/\u0026gt;\u0026lt;/clipPath\u0026gt;\u0026lt;/defs\u0026gt;\u0026lt;/svg\u0026gt;#x');\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/blob/main/CHANGELOG-2022.md\"\u003eesbuild's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog: 2022\u003c/h1\u003e\n\u003cp\u003eThis changelog documents all esbuild versions published in the year 2022 (versions 0.14.11 through 0.16.12).\u003c/p\u003e\n\u003ch2\u003e0.16.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eLoader defaults to \u003ccode\u003ejs\u003c/code\u003e for extensionless files (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/2776\"\u003e#2776\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eCertain packages contain files without an extension. For example, the \u003ccode\u003eyargs\u003c/code\u003e package contains the file \u003ccode\u003eyargs/yargs\u003c/code\u003e which has no extension. Node, Webpack, and Parcel can all understand code that imports \u003ccode\u003eyargs/yargs\u003c/code\u003e because they assume that the file is JavaScript. However, esbuild was previously unable to understand this code because it relies on the file extension to tell it how to interpret the file. With this release, esbuild will now assume files without an extension are JavaScript files. This can be customized by setting the loader for \u003ccode\u003e\u0026quot;\u0026quot;\u003c/code\u003e (the empty string, representing files without an extension) to another loader. For example, if you want files without an extension to be treated as CSS instead, you can do that like this:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eCLI:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003eesbuild --bundle --loader:=css\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJS:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eesbuild.build({\n  bundle: true,\n  loader: { '': 'css' },\n})\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eGo:\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eapi.Build(api.BuildOptions{\n  Bundle: true,\n  Loader: map[string]api.Loader{\u0026quot;\u0026quot;: api.LoaderCSS},\n})\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn addition, the \u003ccode\u003e\u0026quot;type\u0026quot;\u003c/code\u003e field in \u003ccode\u003epackage.json\u003c/code\u003e files now only applies to files with an explicit \u003ccode\u003e.js\u003c/code\u003e, \u003ccode\u003e.jsx\u003c/code\u003e, \u003ccode\u003e.ts\u003c/code\u003e, or \u003ccode\u003e.tsx\u003c/code\u003e extension. Previously it was incorrectly applied by esbuild to all files that had an extension other than \u003ccode\u003e.mjs\u003c/code\u003e, \u003ccode\u003e.mts\u003c/code\u003e, \u003ccode\u003e.cjs\u003c/code\u003e, or \u003ccode\u003e.cts\u003c/code\u003e including extensionless files. So for example an extensionless file in a \u003ccode\u003e\u0026quot;type\u0026quot;: \u0026quot;module\u0026quot;\u003c/code\u003e package is now treated as CommonJS instead of ESM.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.16.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAvoid a syntax error in the presence of direct \u003ccode\u003eeval\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/2761\"\u003e#2761\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe behavior of nested \u003ccode\u003efunction\u003c/code\u003e declarations in JavaScript depends on whether the code is run in strict mode or not. It would be problematic if esbuild preserved nested \u003ccode\u003efunction\u003c/code\u003e declarations in its output because then the behavior would depend on whether the output was run in strict mode or not instead of respecting the strict mode behavior of the original source code. To avoid this, esbuild transforms nested \u003ccode\u003efunction\u003c/code\u003e declarations to preserve the intended behavior of the original source code regardless of whether the output is run in strict mode or not:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003e// Original code\nif (true) {\n  function foo() {}\n  console.log(!!foo)\n  foo = null\n  console.log(!!foo)\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/9129e00e6c36a3e374820cb5e3fc2cd319c8ab85\"\u003e\u003ccode\u003e9129e00\u003c/code\u003e\u003c/a\u003e publish 0.27.3 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/e20e4115acda9c9f052fdd1ec8d7d5c5489e837b\"\u003e\u003ccode\u003ee20e411\u003c/code\u003e\u003c/a\u003e small fix to release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/0dc0f2dee556460bd7b81d5bbbae5a2f86449ab6\"\u003e\u003ccode\u003e0dc0f2d\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4322\"\u003e#4322\u003c/a\u003e: parse and print CSS \u003ccode\u003e@scope\u003c/code\u003e rules\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/55fe39164cd3429fcb92c6f358a8dfe2f6e6e559\"\u003e\u003ccode\u003e55fe391\u003c/code\u003e\u003c/a\u003e update firefox css gradient support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/2c35297c7ad249a51b9cc3974fa91f74dc13f68c\"\u003e\u003ccode\u003e2c35297\u003c/code\u003e\u003c/a\u003e update gradient lowering transform\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/9209e4445abe7610018f0f758fd5d1fa13ec3ea8\"\u003e\u003ccode\u003e9209e44\u003c/code\u003e\u003c/a\u003e Update Go to 1.25.7 (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4388\"\u003e#4388\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/e8d861b68cf8c3c3a4806ec87444ee48b9af1ade\"\u003e\u003ccode\u003ee8d861b\u003c/code\u003e\u003c/a\u003e close \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4374\"\u003e#4374\u003c/a\u003e: compat table for the \u003ccode\u003eusing\u003c/code\u003e feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/19b8887368396934957abd75f316cc069d6cc067\"\u003e\u003ccode\u003e19b8887\u003c/code\u003e\u003c/a\u003e no longer need \u003ccode\u003ewilliamkapke/node-compat-table\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/7e442189722b54bc6c574ae1148e1014d99e5f32\"\u003e\u003ccode\u003e7e44218\u003c/code\u003e\u003c/a\u003e the \u003ccode\u003ekangax/compat-table\u003c/code\u003e repo moved to a new url\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/23b9338ed5efbdfa29d59b8b0d8088b1761fdc39\"\u003e\u003ccode\u003e23b9338\u003c/code\u003e\u003c/a\u003e run \u003ccode\u003emake update-compat-table\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/evanw/esbuild/compare/v0.15.18...v0.27.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for esbuild since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.1 to 6.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/bdcf0c7f82387c18ac8fabfccd2f440645cef47b\"\u003e\u003ccode\u003ebdcf0c7\u003c/code\u003e\u003c/a\u003e v6.14.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/294db90c812ddbe7d7a35d5687c505fd21a2d6a2\"\u003e\u003ccode\u003e294db90\u003c/code\u003e\u003c/a\u003e [readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/5c308e5516c270a78caa6f278465914090f91ec6\"\u003e\u003ccode\u003e5c308e5\u003c/code\u003e\u003c/a\u003e [readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6addf8cf738d529c54d91f6f3ffb6c1be91bbfdc\"\u003e\u003ccode\u003e6addf8c\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cfc108f662326d6ab540f3545ef0b832baf83cdf\"\u003e\u003ccode\u003ecfc108f\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/`pars...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/febb64442a80e49200211fa38d3c96b58024ac77\"\u003e\u003ccode\u003efebb644\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when `thr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/f6a7abff1f13d644db9b05fe4f2c98ada6bf8482\"\u003e\u003ccode\u003ef6a7abf\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/fbc5206c25b4d1851cea683f02c10756c521d15a\"\u003e\u003ccode\u003efbc5206\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/1b9a8b4e78c6aff4c22fa559107227f02fd0216a\"\u003e\u003ccode\u003e1b9a8b4\u003c/code\u003e\u003c/a\u003e [actions] fix rebase workflow permissions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/2a35775614e0fb46ac8a3060201a32a7c23a7fda\"\u003e\u003ccode\u003e2a35775\u003c/code\u003e\u003c/a\u003e [meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.1...v6.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 2.0.1 to 2.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 2.x  14f1d91\u003c/li\u003e\n\u003cli\u003efmt  ed7780a\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  36603d5\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/a3efcee659ef0fb381e2b50d759c720900580a15\"\u003e\u003ccode\u003ea3efcee\u003c/code\u003e\u003c/a\u003e 2.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/14f1d91b0523ffb0c8bbe6a28dc98ddc56ae53bc\"\u003e\u003ccode\u003e14f1d91\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 2.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ed7780ab1cb8a7696f1813b5a945fcc70d8d1990\"\u003e\u003ccode\u003eed7780a\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/36603d5f3599a37af9e85eda30acd7d28599c36e\"\u003e\u003ccode\u003e36603d5\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 2.x  14f1d91\u003c/li\u003e\n\u003cli\u003efmt  ed7780a\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  36603d5\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/a3efcee659ef0fb381e2b50d759c720900580a15\"\u003e\u003ccode\u003ea3efcee\u003c/code\u003e\u003c/a\u003e 2.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/14f1d91b0523ffb0c8bbe6a28dc98ddc56ae53bc\"\u003e\u003ccode\u003e14f1d91\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 2.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ed7780ab1cb8a7696f1813b5a945fcc70d8d1990\"\u003e\u003ccode\u003eed7780a\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/36603d5f3599a37af9e85eda30acd7d28599c36e\"\u003e\u003ccode\u003e36603d5\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cookie` from 0.5.0 to 0.7.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jshttp/cookie/releases\"\u003ecookie's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.2\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix object assignment of \u003ccode\u003ehasOwnProperty\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/177\"\u003e#177\u003c/a\u003e)  bc38ffd\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAllow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eAlthough not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eAdd fast path for \u003ccode\u003eserialize\u003c/code\u003e without options, use \u003ccode\u003eobj.hasOwnProperty\u003c/code\u003e when parsing (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: parse cookies ~10% faster (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e by \u003ca href=\"https://github.com/kurtextrem\"\u003e\u003ccode\u003e@​kurtextrem\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/170\"\u003e#170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: narrow the validation of cookies to match RFC6265 (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/167\"\u003e#167\u003c/a\u003e by \u003ca href=\"https://github.com/bewinsnw\"\u003e\u003ccode\u003e@​bewinsnw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: add \u003ccode\u003emain\u003c/code\u003e to \u003ccode\u003epackage.json\u003c/code\u003e for rspack (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/166\"\u003e#166\u003c/a\u003e by \u003ca href=\"https://github.com/proudparrot2\"\u003e\u003ccode\u003e@​proudparrot2\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\"\u003ehttps://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003epartitioned\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/d19eaa1a2bb9ca43ac0951edd852ba4e88e410e0\"\u003e\u003ccode\u003ed19eaa1\u003c/code\u003e\u003c/a\u003e 0.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/bc38ffd0eae716b199236dda061d0bdc74192dd3\"\u003e\u003ccode\u003ebc38ffd\u003c/code\u003e\u003c/a\u003e Fix object assignment of \u003ccode\u003ehasOwnProperty\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/177\"\u003e#177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/cf4658f492c5bd96aeaf5693c3500f8495031014\"\u003e\u003ccode\u003ecf4658f\u003c/code\u003e\u003c/a\u003e 0.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/6a8b8f5a49af7897b98ebfb29a1c4955afa3d33e\"\u003e\u003ccode\u003e6a8b8f5\u003c/code\u003e\u003c/a\u003e Allow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/58015c0b93de0b63db245cfdc5a108e511a81ad0\"\u003e\u003ccode\u003e58015c0\u003c/code\u003e\u003c/a\u003e Remove more code and perf wins (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/ab057d6c06b94a7b1e3358e69a685ae49c97b627\"\u003e\u003ccode\u003eab057d6\u003c/code\u003e\u003c/a\u003e 0.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/5f02ca87688481dbcf155e49ca8b61732f30e542\"\u003e\u003ccode\u003e5f02ca8\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/a5d591ce8447dd63821779724f96ad3c774c8579\"\u003e\u003ccode\u003ea5d591c\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/51968f94b5e820adeceef505539fa193ffe2d105\"\u003e\u003ccode\u003e51968f9\u003c/code\u003e\u003c/a\u003e Skip isNaN\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/9e7ca51ade4b325307eedd6b4dec190983e9e2cc\"\u003e\u003ccode\u003e9e7ca51\u003c/code\u003e\u003c/a\u003e perf(parse): cache length, return early (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jshttp/cookie/compare/v0.5.0...v0.7.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~blakeembrey\"\u003eblakeembrey\u003c/a\u003e, a new releaser for cookie since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 2.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-forge` from 1.3.1 to 1.3.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md\"\u003enode-forge's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.3.3 - 2025-12-02\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[pkcs12] Make digestAlgorithm parameters optional to fix PKCS#12/PFX issues\nintroduced in 1.3.2.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.3.2 - 2025-11-25\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHIGH\u003c/strong\u003e: ASN.1 Validator Desynchronization\n\u003cul\u003e\n\u003cli\u003eAn Interpretation Conflict (CWE-436) vulnerability in node-forge versions\n1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1\nstructures to desynchronize schema validations, yielding a semantic\ndivergence that may bypass downstream cryptographic verifications and\nsecurity decisions.\u003c/li\u003e\n\u003cli\u003eReported by Hunter Wodzenski.\u003c/li\u003e\n\u003cli\u003eCVE ID: \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-12816\"\u003eCVE-2025-12816\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGHSA ID: \u003ca href=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq\"\u003eGHSA-5gfm-wpxj-wjgq\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHIGH\u003c/strong\u003e: ASN.1 Unbounded Recursion\n\u003cul\u003e\n\u003cli\u003eAn Uncontrolled Recursion (CWE-674) vulnerability in node-forge versions\n1.3.1 and below enables remote, unauthenticated attackers to craft deep\nASN.1 structures that trigger unbounded recursive parsing. This leads to a\nDenial-of-Service (DoS) via stack exhaustion when parsing untrusted DER\ninputs.\u003c/li\u003e\n\u003cli\u003eReported by Hunter Wodzenski.\u003c/li\u003e\n\u003cli\u003eCVE ID: \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-66031\"\u003eCVE-2025-66031\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGHSA ID: \u003ca href=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-554w-wpv2-vw27\"\u003eGHSA-554w-wpv2-vw27\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMODERATE\u003c/strong\u003e: ASN.1 OID Integer Truncation\n\u003cul\u003e\n\u003cli\u003eAn Integer Overflow (CWE-190) vulnerability in node-forge versions 1.3.1\nand below enables remote, unauthenticated attackers to craft ASN.1\nstructures containing OIDs with oversized arcs. These arcs may be decoded\nas smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the\nbypass of downstream OID-based security decisions.\u003c/li\u003e\n\u003cli\u003eReported by Hunter Wodzenski.\u003c/li\u003e\n\u003cli\u003eCVE ID: \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-66030\"\u003eCVE-2025-66030\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGHSA ID: \u003ca href=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-65ch-62r8-g69g\"\u003eGHSA-65ch-62r8-g69g\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[asn1] Fix for vulnerability identified by CVE-2025-12816 PKCS#12 MAC\nverification bypass due to missing macData enforcement and improper\nasn1.validate routine.\u003c/li\u003e\n\u003cli\u003e[asn1] Add \u003ccode\u003efromDer()\u003c/code\u003e max recursion depth check.\n\u003cul\u003e\n\u003cli\u003eAdd a \u003ccode\u003easn1.maxDepth\u003c/code\u003e global configurable maximum depth of 256.\u003c/li\u003e\n\u003cli\u003eAdd a \u003ccode\u003easn1.fromDer()\u003c/code\u003e per-call \u003ccode\u003emaxDepth\u003c/code\u003e option.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNOTE\u003c/strong\u003e: The default maximum is assumed to be higher than needed for valid\ndata. If this assumption is false then this could be a breaking change.\nPlease file an issue if there are use cases that need a higher maximum.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNOTE\u003c/strong\u003e: The per-call \u003ccode\u003emaxDepth\u003c/code\u003e parameter has not been exposed up through\nall of the API stack due to the complexities involved. Please file an issue\nif there are use cases that require this instead of changing the default\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/1cea0aff4901589ae86e314f25782bbe312f9f69\"\u003e\u003ccode\u003e1cea0af\u003c/code\u003e\u003c/a\u003e Release 1.3.3.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/5265989cf5e54cfe1e27a10d71523007ce0507b1\"\u003e\u003ccode\u003e5265989\u003c/code\u003e\u003c/a\u003e Update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/e4f3961406395dd8e985dcf841852ceca73ac3a9\"\u003e\u003ccode\u003ee4f3961\u003c/code\u003e\u003c/a\u003e Fix changelog for release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/503979b0295cf633a30199d6bd937f4a222481a0\"\u003e\u003ccode\u003e503979b\u003c/code\u003e\u003c/a\u003e Update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/c3b3b32a8c157ac57752934d3af63b5f798b58b8\"\u003e\u003ccode\u003ec3b3b32\u003c/code\u003e\u003c/a\u003e Make digestAlgorithm parameters optional\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/6f70043a6db1abb9f3304f3d432efed3ba50fcca\"\u003e\u003ccode\u003e6f70043\u003c/code\u003e\u003c/a\u003e Update CVE details.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/f547b0d292745094190ecb250429d21e8804a375\"\u003e\u003ccode\u003ef547b0d\u003c/code\u003e\u003c/a\u003e Start 1.3.3-0.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/235ad3e70e4fdfdca4fdeb662dfba6588e2c38bd\"\u003e\u003ccode\u003e235ad3e\u003c/code\u003e\u003c/a\u003e Release 1.3.2.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/25982441171dc9815c87d3d886c5c8a1d092b334\"\u003e\u003ccode\u003e2598244\u003c/code\u003e\u003c/a\u003e Update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/0032dd0be8b6fb1b1092ef754d1dde91c10a95ad\"\u003e\u003ccode\u003e0032dd0\u003c/code\u003e\u003c/a\u003e Fix typos.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/digitalbazaar/forge/compare/v1.3.1...v1.3.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nRemoves `tar`\n\nUpdates `vite` from 5.4.11 to 7.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.3.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.7\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.7/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.6\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.6/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.5\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.5/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eNote: 7.2.5 failed to publish so it is skipped on npm\u003c/em\u003e\u003c/p\u003e\n\u003ch2\u003ev7.2.4\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.4/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.3/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@7.2.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@7.2.1/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@7.2.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@7.2.0/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.0-beta.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.0-beta.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.0-beta.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.0-beta.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.1.12\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.1.12/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.1.11\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.1.11/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.0...v7.3.1\"\u003e7.3.1\u003c/a\u003e (2026-01-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21364\"\u003e#21364\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e9d39d37\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.2.7...v7.3.0\"\u003e7.3.0\u003c/a\u003e (2025-12-15)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update esbuild from ^0.25.0 to ^0.27.0 (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21183\"\u003e#21183\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/cff26ec0fc13373d7125a5eac6cb01fe63fee4b1\"\u003ecff26ec\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.2.6...v7.2.7\"\u003e7.2.7\u003c/a\u003e (2025-12-08)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eplugin shortcut support (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21211\"\u003e#21211\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/721f16343d9555ae8fc71a2e5354b22e12ff0dc3\"\u003e721f163\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.2.5...v7.2.6\"\u003e7.2.6\u003c/a\u003e (2025-12-01)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.2.4...v7.2.5\"\u003e7.2.5\u003c/a\u003e (2025-12-01)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug F...\n\n_Description has been truncated_","html_url":"https://github.com/ccwu0918/pollinations/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ccwu0918%2Fpollinations/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"}],"issue_packages":[{"old_version":"3.5.1","new_version":"3.5.4","update_type":"patch","path":null,"pr_created_at":"2026-06-06T22:27:48.000Z","version_change":"3.5.1 → 3.5.4","issue":{"uuid":"4605329155","node_id":"PR_kwDOLxKLkM7jhsQr","number":9,"state":"open","title":"Bump the npm_and_yarn group across 1 directory with 17 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-06T22:27:48.000Z","updated_at":"2026-06-06T22:28:20.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":17,"packages":[{"name":"aws-sdk","old_version":"2.1487.0","new_version":"2.1693.0","repository_url":"https://github.com/aws/aws-sdk-js"},{"name":"formidable","old_version":"3.5.1","new_version":"3.5.4","repository_url":"https://github.com/node-formidable/formidable"},{"name":"jspdf","old_version":"2.5.1","new_version":"4.2.1","repository_url":"https://github.com/parallax/jsPDF"},{"name":"next","old_version":"14.0.1","new_version":"16.2.7","repository_url":"https://github.com/vercel/next.js"},{"name":"uuid","old_version":"9.0.1","new_version":"14.0.0","repository_url":"https://github.com/uuidjs/uuid"},{"name":"postcss","old_version":"8.4.31","new_version":"8.5.10","repository_url":"https://github.com/postcss/postcss"},{"name":"braces","old_version":"3.0.2","new_version":"3.0.3","repository_url":"https://github.com/micromatch/braces"},{"name":"flatted","old_version":"3.2.9","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"js-yaml","old_version":"4.1.0","new_version":"4.2.0","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"tar-fs","old_version":"2.1.3","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"ws","old_version":"8.14.2","new_version":"8.21.0","repository_url":"https://github.com/websockets/ws"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 13 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk](https://github.com/aws/aws-sdk-js) | `2.1487.0` | `2.1693.0` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.1` | `3.5.4` |\n| [jspdf](https://github.com/parallax/jsPDF) | `2.5.1` | `4.2.1` |\n| [next](https://github.com/vercel/next.js) | `14.0.1` | `16.2.7` |\n| [uuid](https://github.com/uuidjs/uuid) | `9.0.1` | `14.0.0` |\n| [postcss](https://github.com/postcss/postcss) | `8.4.31` | `8.5.10` |\n| [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.2.9` | `3.4.2` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.2.0` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.3` | `2.1.4` |\n| [ws](https://github.com/websockets/ws) | `8.14.2` | `8.21.0` |\n\n\nUpdates `aws-sdk` from 2.1487.0 to 2.1693.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js/releases\"\u003eaws-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.1693.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1692.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1691.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1690.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1689.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1688.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1687.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1686.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1685.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1684.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1683.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1682.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1681.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1680.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1679.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1678.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1677.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/9d3c66eca8c4416a9d347d0703f27b65775d65ef\"\u003e\u003ccode\u003e9d3c66e\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1693.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c039567cee58b50a44f53f30318fa21f36c42ecc\"\u003e\u003ccode\u003ec039567\u003c/code\u003e\u003c/a\u003e test(client-elastictranscoder): remove feature test (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4711\"\u003e#4711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/f5b1a6f0aebb477204d979091d654649f29ad9ce\"\u003e\u003ccode\u003ef5b1a6f\u003c/code\u003e\u003c/a\u003e docs: end-of-support (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4706\"\u003e#4706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/657d6feb00447c8be1d65158a0ecc0585b70ed60\"\u003e\u003ccode\u003e657d6fe\u003c/code\u003e\u003c/a\u003e chore: use ssh private key for git sync (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4705\"\u003e#4705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c12585baeb9197158cd50975af66856617732aea\"\u003e\u003ccode\u003ec12585b\u003c/code\u003e\u003c/a\u003e chore: remove regression label management (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4699\"\u003e#4699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/966fa6c316dbb11ca9277564ff7120e6b16467f4\"\u003e\u003ccode\u003e966fa6c\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1692.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/5d0e38adbbc1a3fd6e6bf7c48cd7e209e9eb0b5f\"\u003e\u003ccode\u003e5d0e38a\u003c/code\u003e\u003c/a\u003e Delete EC2 launch configuration e2e tests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4685\"\u003e#4685\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/b9ce3461a495dcf4f4a0be133e103d98130847a6\"\u003e\u003ccode\u003eb9ce346\u003c/code\u003e\u003c/a\u003e chore: fix issue config (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4683\"\u003e#4683\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c06668172b233e0b2ded1afc48f0a11f6b79735c\"\u003e\u003ccode\u003ec066681\u003c/code\u003e\u003c/a\u003e Update issue template config and disable docs requests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4682\"\u003e#4682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/163a7cfc86308e0b54245c04fb7b317bcd3893b0\"\u003e\u003ccode\u003e163a7cf\u003c/code\u003e\u003c/a\u003e Modified bug issue template to add checkbox to report potential regression. (...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-js/compare/v2.1487.0...v2.1693.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 3.5.1 to 3.5.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-formidable/formidable/releases\"\u003eformidable's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eswitch to pnpm, minimize deps \u0026amp; devDeps, fix deps through pnpm audit\u003c/li\u003e\n\u003cli\u003eremove \u003ccode\u003eos.machine\u003c/code\u003e, fix \u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/994\"\u003e#994\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/995\"\u003e#995\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-formidable/formidable/compare/v3.5.3...v3.5.4\"\u003ehttps://github.com/node-formidable/formidable/compare/v3.5.3...v3.5.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix existing test failure by \u003ca href=\"https://github.com/ryhmrt\"\u003e\u003ccode\u003e@​ryhmrt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/990\"\u003enode-formidable/formidable#990\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate Ryan Dahl x account link by \u003ca href=\"https://github.com/moetezch\"\u003e\u003ccode\u003e@​moetezch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/989\"\u003enode-formidable/formidable#989\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate failing tests\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate CI/CD workflows and actions;\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate CodeQL github action for security analysis\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate readme, links and badges\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate to use cuid2 (battle-tested \u003ccode\u003e@paralleldrive/cuid2\u003c/code\u003e package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ryhmrt\"\u003e\u003ccode\u003e@​ryhmrt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/990\"\u003enode-formidable/formidable#990\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moetezch\"\u003e\u003ccode\u003e@​moetezch\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/989\"\u003enode-formidable/formidable#989\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3\"\u003ehttps://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.2\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\"\u003eformidable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e3.5.4\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix the \u003ccode\u003eos.machine\u003c/code\u003e breaking some dependents, fix \u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/994\"\u003e#994\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd Node 16, 18, 20, 22 to CI/CD\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.3\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esecurity report by ZAST.AI help for some vulnerabilities addressing (primarily the random names generation)\u003c/li\u003e\n\u003cli\u003eupdate failing tests\u003c/li\u003e\n\u003cli\u003eupdate CI/CD workflows and actions;\u003c/li\u003e\n\u003cli\u003eupdate CodeQL github action for security analysis\u003c/li\u003e\n\u003cli\u003eupdate readme, links and badges\u003c/li\u003e\n\u003cli\u003eupdate to use cuid2 (battle-tested \u003ccode\u003e@paralleldrive/cuid2\u003c/code\u003e package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.2\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/982\"\u003e#982\u003c/a\u003e) make it easier to import hexoid with webpack\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/d0fbec13edc8add54a1afb9ce1a8d3db803f8d47\"\u003e\u003ccode\u003ed0fbec1\u003c/code\u003e\u003c/a\u003e chore: release v3.5.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/b2483ba444464f57ac6052891a124afdea63b273\"\u003e\u003ccode\u003eb2483ba\u003c/code\u003e\u003c/a\u003e fix: remove os.machine, fix \u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/994\"\u003e#994\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/995\"\u003e#995\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/76d54b2e65e515e28033a6ffe6cac765031269a2\"\u003e\u003ccode\u003e76d54b2\u003c/code\u003e\u003c/a\u003e chore: switch to pnpm, minimize deps \u0026amp; devDeps, fix deps through pnpm audit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/0bf31f65877fa1dce4c163c0f3a0e588afbbe45b\"\u003e\u003ccode\u003e0bf31f6\u003c/code\u003e\u003c/a\u003e chore: release v3.5.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/022c2c5577dfe14d2947f10909d81b03b6070bf5\"\u003e\u003ccode\u003e022c2c5\u003c/code\u003e\u003c/a\u003e fix: switch hexoid - cuid2 -\u0026gt; better, safer, more random; this is addressing ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/3a126b7a3c8bf8ee2f6bae0624c556a7c709ed35\"\u003e\u003ccode\u003e3a126b7\u003c/code\u003e\u003c/a\u003e chore: bruh\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/4d176d3dd57f5361269ff97e0afbbf843807a6d1\"\u003e\u003ccode\u003e4d176d3\u003c/code\u003e\u003c/a\u003e chore: build badges\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/a91cfea98f3173d71732a68b0430c7aa8582058b\"\u003e\u003ccode\u003ea91cfea\u003c/code\u003e\u003c/a\u003e chore: update readme badges\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/b1c318640699b551bbf476110c18fa19d13efce4\"\u003e\u003ccode\u003eb1c3186\u003c/code\u003e\u003c/a\u003e chore: update codeql actions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/node-formidable/formidable/commit/9d6c76a253ce45680a6c834f72d8b423cc4f68c0\"\u003e\u003ccode\u003e9d6c76a\u003c/code\u003e\u003c/a\u003e chore: updare readme\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/node-formidable/formidable/compare/v3.5.1...v3.5.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jspdf` from 2.5.1 to 4.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/parallax/jsPDF/releases\"\u003ejspdf's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes two security issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5\"\u003eHTML Injection in output methods\u003c/a\u003e vulnerability.\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-7x6v-j9x4-qf24\"\u003ePDF Object Injection via free text annotation color\u003c/a\u003e vulnerability.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/parallax/jsPDF/compare/v4.2.0...v4.2.1\"\u003ehttps://github.com/parallax/jsPDF/compare/v4.2.0...v4.2.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cp\u003eThis release fixes three security issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-p5xg-68wr-hm3m\"\u003ePDF Injection in AcroForm module allows Arbitrary JavaScript Execution (RadioButton children)\u003c/a\u003e vulnerability.\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-67pg-wm7f-q7fj\"\u003eClient-Side/Server-Side Denial of Service via Malicious GIF Dimensions\u003c/a\u003e vulnerability.\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-9vjf-qc39-jprp\"\u003ePDF Object Injection via Unsanitized Input in addJS Method\u003c/a\u003e vulnerability.\u003c/li\u003e\n\u003cli\u003eAdd \u0026quot;default\u0026quot; property to export section in package.json by \u003ca href=\"https://github.com/stefan-schweiger\"\u003e\u003ccode\u003e@​stefan-schweiger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3953\"\u003eparallax/jsPDF#3953\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stefan-schweiger\"\u003e\u003ccode\u003e@​stefan-schweiger\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3953\"\u003eparallax/jsPDF#3953\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/parallax/jsPDF/compare/v4.1.0...v4.2.0\"\u003ehttps://github.com/parallax/jsPDF/compare/v4.1.0...v4.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cp\u003eThis release fixes several security issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade optional dompurify dependency to 3.3.1 in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3948\"\u003eparallax/jsPDF#3948\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-pqxr-3g65-p328\"\u003ePDF Injection in AcroForm module allows Arbitrary JavaScript Execution\u003c/a\u003e vulnerability\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-vm32-vv63-w422\"\u003eStored XMP Metadata Injection (Spoofing \u0026amp; Integrity Violation)\u003c/a\u003e vulnerability\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-cjw8-79x6-5cj4\"\u003eShared State Race Condition in addJS Method\u003c/a\u003e vulnerability\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-95fx-jjr5-f39c\"\u003eDenial of Service (DoS) via Unvalidated BMP Dimensions in BMPDecoder\u003c/a\u003e vulnerability\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/parallax/jsPDF/compare/v4.0.0...v4.1.0\"\u003ehttps://github.com/parallax/jsPDF/compare/v4.0.0...v4.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cp\u003eThis release fixes a critical path traversal/local file inclusion \u003ca href=\"https://github.com/parallax/jsPDF/security/advisories/GHSA-f8cm-6447-x5h2\"\u003esecurity vulnerability\u003c/a\u003e in the jsPDF Node.js build. File system access is now restricted by default and can be enabled by either using node's \u003ca href=\"https://nodejs.org/api/permissions.html\"\u003e\u003ccode\u003e--permission\u003c/code\u003e\u003c/a\u003e flag or the new \u003ca href=\"https://raw.githack.com/MrRio/jsPDF/master/docs/module-fileloading.html#~allowFsRead\"\u003e\u003ccode\u003ejsPDF.allowFsRead\u003c/code\u003e\u003c/a\u003e property.\u003c/p\u003e\n\u003cp\u003eThere are no other breaking changes.\u003c/p\u003e\n\u003ch2\u003ev3.0.4\u003c/h2\u003e\n\u003cp\u003eThis release includes a bunch of bugfixes. Thanks to all contributors!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Snyk] Upgrade \u003ccode\u003e@​babel/runtime\u003c/code\u003e from 7.28.3 to 7.28.4 by \u003ca href=\"https://github.com/MrRio\"\u003e\u003ccode\u003e@​MrRio\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3895\"\u003eparallax/jsPDF#3895\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: cell function now properly accepts align parameter by \u003ca href=\"https://github.com/vishal-rathod-07\"\u003e\u003ccode\u003e@​vishal-rathod-07\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3896\"\u003eparallax/jsPDF#3896\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove duplicated function \u0026quot;ga\u0026quot; from WebPDecoder.js by \u003ca href=\"https://github.com/jvdp\"\u003e\u003ccode\u003e@​jvdp\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3902\"\u003eparallax/jsPDF#3902\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix font state management issue \u003ca href=\"https://redirect.github.com/parallax/jsPDF/issues/3890\"\u003e#3890\u003c/a\u003e by \u003ca href=\"https://github.com/srikanth-s2003\"\u003e\u003ccode\u003e@​srikanth-s2003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3891\"\u003eparallax/jsPDF#3891\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix pages property to always return current array reference ( \u003ca href=\"https://redirect.github.com/parallax/jsPDF/issues/3898\"\u003e#3898\u003c/a\u003e ) by \u003ca href=\"https://github.com/Opineppes\"\u003e\u003ccode\u003e@​Opineppes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3899\"\u003eparallax/jsPDF#3899\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix jsPDF + Vite compatibility issue \u003ca href=\"https://redirect.github.com/parallax/jsPDF/issues/3851\"\u003e#3851\u003c/a\u003e by \u003ca href=\"https://github.com/tishajain25\"\u003e\u003ccode\u003e@​tishajain25\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/parallax/jsPDF/pull/3903\"\u003eparallax/jsPDF#3903\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/4562ce8aa35bd5ecd98cd5e262e3da2af96476f6\"\u003e\u003ccode\u003e4562ce8\u003c/code\u003e\u003c/a\u003e 4.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/4155c4819d5eca284168e51e0e1e81126b4f14b8\"\u003e\u003ccode\u003e4155c48\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7\"\u003e\u003ccode\u003e87a40bb\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/b1607a9391d4cd65ea7ade25998aea8345ae1be3\"\u003e\u003ccode\u003eb1607a9\u003c/code\u003e\u003c/a\u003e Bump minimatch from 3.1.2 to 3.1.5 (\u003ca href=\"https://redirect.github.com/parallax/jsPDF/issues/3961\"\u003e#3961\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/42ac89097de83bcedd10870af47a0a25c11ca3d1\"\u003e\u003ccode\u003e42ac890\u003c/code\u003e\u003c/a\u003e Bump rollup from 2.79.2 to 2.80.0 (\u003ca href=\"https://redirect.github.com/parallax/jsPDF/issues/3960\"\u003e#3960\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/7af912cadaf0f9a2ad28afe7af53033a2c61de64\"\u003e\u003ccode\u003e7af912c\u003c/code\u003e\u003c/a\u003e 4.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/56b46d45b052346f5995b005a34af5dcdddd5437\"\u003e\u003ccode\u003e56b46d4\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/2e5e156e284d92c7d134bce97e6418756941d5e6\"\u003e\u003ccode\u003e2e5e156\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/71ad2dbfa6c7c189ab42b855b782620fa8a38375\"\u003e\u003ccode\u003e71ad2db\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/parallax/jsPDF/commit/885a7778070d500887c9a5d2b02b55460009a9d0\"\u003e\u003ccode\u003e885a777\u003c/code\u003e\u003c/a\u003e fix: upgrade \u003ccode\u003e@​babel/runtime\u003c/code\u003e from 7.28.4 to 7.28.6 (\u003ca href=\"https://redirect.github.com/parallax/jsPDF/issues/3954\"\u003e#3954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/parallax/jsPDF/compare/v2.5.1...v4.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `next` from 14.0.1 to 16.2.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vercel/next.js/releases\"\u003enext's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev16.2.7\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nThis release is backporting bug fixes. It does \u003cstrong\u003enot\u003c/strong\u003e include all pending features/changes on canary.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eCore Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackport documentation fixes for v16.2 (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93804\"\u003e#93804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Patch \u003ccode\u003eplaywright-core\u003c/code\u003e to resolve \u003ccode\u003e_finishedPromise\u003c/code\u003e on \u003ccode\u003erequestFailed\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93920\"\u003e#93920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Fix dev mode hydration failure when page is served from HTTP cache (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93492\"\u003e#93492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Fix catch-all \u003ccode\u003erouter.query\u003c/code\u003e corruption with \u003ccode\u003ebasePath\u003c/code\u003e + \u003ccode\u003erewrites\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93917\"\u003e#93917\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Encode non-ASCII characters in cache tags at construction (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93918\"\u003e#93918\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Fix server action forwarding loop with middleware rewrites (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93919\"\u003e#93919\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Turbopack: switch from base40 to base38 hash encoding (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93932\"\u003e#93932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[ci] Disable hanging node 24 typescript tests on 16.2 backport branch (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94164\"\u003e#94164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Fix \u0026quot;type: module\u0026quot; in project dir when using standalone or adapters (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94050\"\u003e#94050\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] Propagate adapter preferred regions (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94200\"\u003e#94200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[16.2.x] Don't drop \u003ccode\u003eFormData\u003c/code\u003e entries (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94240\"\u003e#94240\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[backport] feat(turbopack): add LocalPathOrProjectPath PostCSS config resolution (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94284\"\u003e#94284\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCredits\u003c/h3\u003e\n\u003cp\u003eHuge thanks to \u003ca href=\"https://github.com/eps1lon\"\u003e\u003ccode\u003e@​eps1lon\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/icyJoseph\"\u003e\u003ccode\u003e@​icyJoseph\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/unstubbable\"\u003e\u003ccode\u003e@​unstubbable\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/mischnic\"\u003e\u003ccode\u003e@​mischnic\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/bgw\"\u003e\u003ccode\u003e@​bgw\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/timneutkens\"\u003e\u003ccode\u003e@​timneutkens\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/lukesandberg\"\u003e\u003ccode\u003e@​lukesandberg\u003c/code\u003e\u003c/a\u003e for helping!\u003c/p\u003e\n\u003ch2\u003ev16.2.6\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nThis release contains security fixes and backported bug fixes. It does \u003cstrong\u003enot\u003c/strong\u003e include all pending features/changes on canary.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eSecurity Fixes\u003c/h3\u003e\n\u003cp\u003eThe following advisories have been addressed:\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eHigh:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-8h8q-6873-q5fj\"\u003eGHSA-8h8q-6873-q5fj: Denial of Service with Server Components\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-267c-6grr-h53f\"\u003eGHSA-267c-6grr-h53f: Middleware / Proxy bypass in App Router applications via segment-prefetch routes\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-26hh-7cqf-hhc6\"\u003eGHSA-26hh-7cqf-hhc6: Middleware / Proxy bypass in App Router applications via segment-prefetch routes - \u003cstrong\u003eIncomplete Fix Follow-Up\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-mg66-mrh9-m8jx\"\u003eGHSA-mg66-mrh9-m8jx: Denial of Service via connection exhaustion in applications using Cache Components\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-492v-c6pp-mqqv\"\u003eGHSA-492v-c6pp-mqqv: Middleware / Proxy bypass through dynamic route parameter injection\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-c4j6-fc7j-m34r\"\u003eGHSA-c4j6-fc7j-m34r: Server-side request forgery in applications using WebSocket upgrades\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-36qx-fr4f-26g5\"\u003eGHSA-36qx-fr4f-26g5: Middleware / Proxy bypass in Pages Router applications using i18n\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eModerate:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-ffhc-5mcf-pf4q\"\u003eGHSA-ffhc-5mcf-pf4q: Cross-site scripting in App Router applications using CSP nonces\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-gx5p-jg67-6x7h\"\u003eGHSA-gx5p-jg67-6x7h: Cross-site scripting in beforeInteractive scripts with untrusted input\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-h64f-5h5j-jqjh\"\u003eGHSA-h64f-5h5j-jqjh: Denial of Service in the Image Optimization API\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-wfc6-r584-vfw7\"\u003eGHSA-wfc6-r584-vfw7: Cache poisoning in React Server Component responses\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eLow:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-vfv6-92ff-j949\"\u003eGHSA-vfv6-92ff-j949: Cache poisoning via collisions in React Server Component cache-busting\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/security/advisories/GHSA-3g8h-86w9-wvmq\"\u003eGHSA-3g8h-86w9-wvmq: Middleware / Proxy redirects can be cache-poisoned\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/9bd3c26a733901956549889f28c0047553bba622\"\u003e\u003ccode\u003e9bd3c26\u003c/code\u003e\u003c/a\u003e v16.2.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/c63224f3d8e8dd0a4ef8635916f92954421e5f1e\"\u003e\u003ccode\u003ec63224f\u003c/code\u003e\u003c/a\u003e [backport] feat(turbopack): add LocalPathOrProjectPath PostCSS config resolut...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/63115c79877c90df4371c2425f3fc5d3a55ac58d\"\u003e\u003ccode\u003e63115c7\u003c/code\u003e\u003c/a\u003e [16.2.x] Don't drop \u003ccode\u003eFormData\u003c/code\u003e entries (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94240\"\u003e#94240\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/aef22fdc828226227f618bb982a222e1256ba6f2\"\u003e\u003ccode\u003eaef22fd\u003c/code\u003e\u003c/a\u003e [backport] Propagate adapter preferred regions (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94200\"\u003e#94200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/f126e72271a808a12adb1f97feca6a900bece7ba\"\u003e\u003ccode\u003ef126e72\u003c/code\u003e\u003c/a\u003e [backport] Fix \u0026quot;type: module\u0026quot; in project dir when using standalone or adapter...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/bda3e2aabe5ba18b6e8ec656bcdaf549816469c3\"\u003e\u003ccode\u003ebda3e2a\u003c/code\u003e\u003c/a\u003e [ci] Disable hanging node 24 typescript tests on 16.2 backport branch (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/94164\"\u003e#94164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/7e16e07c0203f8a940899e656526f287278c57e6\"\u003e\u003ccode\u003e7e16e07\u003c/code\u003e\u003c/a\u003e [backport] Turbopack: switch from base40 to base38 hash encoding (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93932\"\u003e#93932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/6139f4b885b329abdd5821199cc19cc89f3eaf33\"\u003e\u003ccode\u003e6139f4b\u003c/code\u003e\u003c/a\u003e [backport] Fix server action forwarding loop with middleware rewrites (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93919\"\u003e#93919\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/c021d10fe9540aaa7aff7b7227c7d73e60a0e5b9\"\u003e\u003ccode\u003ec021d10\u003c/code\u003e\u003c/a\u003e [backport] Encode non-ASCII characters in cache tags at construction (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/93918\"\u003e#93918\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/9184ddb1aeed5c5db0f02c7a2d6d298071c2f44f\"\u003e\u003ccode\u003e9184ddb\u003c/code\u003e\u003c/a\u003e [backport] Fix catch-all \u003ccode\u003erouter.query\u003c/code\u003e corruption with \u003ccode\u003ebasePath\u003c/code\u003e + `rewrite...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vercel/next.js/compare/v14.0.1...v16.2.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for next since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `uuid` from 9.0.1 to 14.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003edc4ddb8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003ef2c235f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003effa3138\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.1...v13.0.2\"\u003e13.0.2\u003c/a\u003e (2026-05-04)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ererelease to fix provenance. (\u003ca href=\"https://github.com/uuidjs/uuid/commit/49ccb35f78c0c4ce1409dd2f1d89f83caadba10b\"\u003e49ccb35\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v13.0.1\"\u003e13.0.1\u003c/a\u003e (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/9d27ddf7046ce496ef39569ff84d948eeff9cb2a\"\u003e9d27ddf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v12.0.1\"\u003e12.0.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq\"\u003eGHSA-w5hq-g745-h8pq\u003c/a\u003e: \u003ccode\u003ev3()\u003c/code\u003e, \u003ccode\u003ev5()\u003c/code\u003e, and \u003ccode\u003ev6()\u003c/code\u003e did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid \u003ccode\u003eoffset\u003c/code\u003e was provided. A \u003ccode\u003eRangeError\u003c/code\u003e is now thrown if \u003ccode\u003eoffset \u0026lt; 0\u003c/code\u003e or \u003ccode\u003eoffset + 16 \u0026gt; buf.length\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecrypto\u003c/code\u003e is now expected to be globally defined (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd node@24 to ci matrix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/879\"\u003e#879\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/42b6178aa21a593257f0a72abacd220f0b7b8a92\"\u003e42b6178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f38cf10366ab074f9328ae2021eea04d5f2e530\"\u003e0f38cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ae786e27265f50bcf7cead196c29f1869297c42f\"\u003eae786e2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c7ee40598ed78584d81ab78dffded9fe5ff20b01\"\u003ec7ee405\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove v4() performance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/894\"\u003e#894\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/5fd974c12718c8848035650b69b8948f12ace197\"\u003e5fd974c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestore node: prefix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/889\"\u003e#889\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e1f42a354593093ba0479f0b4047dae82d28c507\"\u003ee1f42a3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7c1ea087a8149b57380fc8bb7f68c3a215cb6e4b\"\u003e\u003ccode\u003e7c1ea08\u003c/code\u003e\u003c/a\u003e chore(main): release 14.0.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34\"\u003e\u003ccode\u003e3d2c5b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003e\u003ccode\u003ef2c235f\u003c/code\u003e\u003c/a\u003e fix!: expect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/529ef0899f5dd503d2ee90d690585d63d78bc212\"\u003e\u003ccode\u003e529ef08\u003c/code\u003e\u003c/a\u003e chore: upgrade TypeScript and fixup types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/927\"\u003e#927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/086fd7976f11433edf9ac80be876b3ad243fe087\"\u003e\u003ccode\u003e086fd79\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003e\u003ccode\u003edc4ddb8\u003c/code\u003e\u003c/a\u003e feat!: drop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f1f9c9c9cedbae5a1d363d5406c5dfbabe81404\"\u003e\u003ccode\u003e0f1f9c9\u003c/code\u003e\u003c/a\u003e chore: switch to Biome for parsing and linting (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2879e64bf125add903c1eff6e0860542c605013\"\u003e\u003ccode\u003ee2879e6\u003c/code\u003e\u003c/a\u003e chore: use maintained version of npm-run-all (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/930\"\u003e#930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003e\u003ccode\u003effa3138\u003c/code\u003e\u003c/a\u003e fix: Use GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0423d49df2dc8efc300c804731d25f4d7e0fccc4\"\u003e\u003ccode\u003e0423d49\u003c/code\u003e\u003c/a\u003e docs: remove obsolete v1 option notes (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v9.0.1...v14.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postcss` from 8.4.31 to 8.5.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/releases\"\u003epostcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003ePostCSS 8.5 brought API to work better with non-CSS sources like HTML, Vue.js/Svelte sources or CSS-in-JS.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e during \u003ca href=\"https://redirect.github.com/postcss/postcss/issues/1995\"\u003ehis work\u003c/a\u003e on \u003ca href=\"https://stylelint.io\"\u003eStylelint\u003c/a\u003e added \u003ccode\u003eInput#document\u003c/code\u003e in additional to \u003ccode\u003eInput#css\u003c/code\u003e.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eroot.source.input.document //=\u0026gt; \u0026quot;\u0026lt;p\u0026gt;Hello\u0026lt;/p\u0026gt;\r\n                           //    \u0026lt;style\u0026gt;\r\n                           //    p {\r\n                           //      color: green;\r\n                           //    }\r\n                           //    \u0026lt;/style\u0026gt;\u0026quot;\r\nroot.source.input.css      //=\u0026gt; \u0026quot;p {\r\n                           //      color: green;\r\n                           //    }\u0026quot;\r\n\u003cp\u003e\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt;\u003cbr /\u003e\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/blob/main/CHANGELOG.md\"\u003epostcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed backwards compatibility for complex cases (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5 “Duke Alloces”\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eInput#document\u003c/code\u003e for sources like CSS-in-JS or HTML (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.4.49\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed custom syntax without \u003ccode\u003esource.offset\u003c/code\u003e (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/33b9790263dc1562a46ce45d9532bd63e95b7986\"\u003e\u003ccode\u003e33b9790\u003c/code\u003e\u003c/a\u003e Release 8.5.10 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/536c79e4b01e58a3a56b09c3c0cf2323f4b9a28b\"\u003e\u003ccode\u003e536c79e\u003c/code\u003e\u003c/a\u003e Escape \u0026lt;/style\u0026gt; in CSS output (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2074\"\u003e#2074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/afa96b2a139ce625c4d27973313479c7c85f39d4\"\u003e\u003ccode\u003eafa96b2\u003c/code\u003e\u003c/a\u003e Update dependencies (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2073\"\u003e#2073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/effe88bb87cabdc1876e02adbdd30f392f19f40d\"\u003e\u003ccode\u003eeffe88b\u003c/code\u003e\u003c/a\u003e Typo (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/3ee79a2c4a11e41d52db50b444eebe38299495ad\"\u003e\u003ccode\u003e3ee79a2\u003c/code\u003e\u003c/a\u003e Thread model (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2071\"\u003e#2071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/2e0683daca4dc2919211b03774f6b2d137136c01\"\u003e\u003ccode\u003e2e0683d\u003c/code\u003e\u003c/a\u003e Create incident response docs (\u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/fe88ac29c06b7b218be32994cdc6ca1525bdf2c9\"\u003e\u003ccode\u003efe88ac2\u003c/code\u003e\u003c/a\u003e Release 8.5.9 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/c551632496b87ab3f1965bfda5dc386b6c71963e\"\u003e\u003ccode\u003ec551632\u003c/code\u003e\u003c/a\u003e Avoid RegExp when we can use simple JS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/89a6b744060eb8dee743351c785a9fbe37d4525a\"\u003e\u003ccode\u003e89a6b74\u003c/code\u003e\u003c/a\u003e Move SECURITY.txt for docs folder to keep GitHub page cleaner\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/6ceb8a46af9f9de821faee98f861bdf84617347b\"\u003e\u003ccode\u003e6ceb8a4\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/postcss/postcss/compare/8.4.31...8.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/runtime` from 7.23.2 to 7.29.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e@​babel/runtime's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.7 (2026-05-25)\u003c/h2\u003e\n\u003cp\u003eRe-release all packages with npm provenance attestations\u003c/p\u003e\n\u003ch2\u003ev7.29.6 (2026-05-25)\u003c/h2\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/18014\"\u003e#18014\u003c/a\u003e Catchup source map position in preserveFormat (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/18001\"\u003e#18001\u003c/a\u003e [7.x packport]Improve input source map handling (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-generator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17998\"\u003e#17998\u003c/a\u003e Preserve original identifier names from input sourcemaps (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime/issues/17992\"\u003e#17992\u003c/a\u003e) (\u003ca href=\"https://github.com/Andarist\"\u003e\u003ccode\u003e@​Andarist\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 3\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMateusz Burzyński (\u003ca href=\"https://github.com/Andarist\"\u003e\u003ccode\u003e@​Andarist\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.5 (2026-05-05)\u003c/h2\u003e\n\u003ch4\u003e:house:  Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-preset-env\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003e@babel/*\u003c/code\u003e dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.4 (2026-05-05)\u003c/h2\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-modules-systemjs\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17974\"\u003e#17974\u003c/a\u003e [7.x backport]fix(systemjs): improve module string name support (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 1\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.3 (2026-04-30)\u003c/h2\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17923\"\u003e#17923\u003c/a\u003e Support flow extends bound (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-create-class-features-plugin\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17931\"\u003e#17931\u003c/a\u003e fix(decorators): replace super within all removed static elements (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-register\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17915\"\u003e#17915\u003c/a\u003e Fix thread synchronization issues in \u003ccode\u003e@babel/register\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-compat-data\u003c/code\u003e, \u003ccode\u003ebabel-plugin-bugfix-safari-rest-destructuring-rhs-array\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17788\"\u003e#17788\u003c/a\u003e Add bugfix plugin for Safari array rest destructuring bug (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/4fba7541180bf5f58256d8e358b544e3831ad090\"\u003e\u003ccode\u003e4fba754\u003c/code\u003e\u003c/a\u003e v7.29.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/37d5595fca9f188f0534458180611f2e776acd31\"\u003e\u003ccode\u003e37d5595\u003c/code\u003e\u003c/a\u003e v7.29.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f68ac511f091f6d1f698e8ce59cd668d3bfc6102\"\u003e\u003ccode\u003ef68ac51\u003c/code\u003e\u003c/a\u003e chore: Avoid CITGM errors (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime/issues/17382\"\u003e#17382\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/7d069309fdfcedda2928a043f6f7c98135c1242a\"\u003e\u003ccode\u003e7d06930\u003c/code\u003e\u003c/a\u003e v7.27.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/5b9468d9bf1ab4f427241673e9f03593da115a69\"\u003e\u003ccode\u003e5b9468d\u003c/code\u003e\u003c/a\u003e Reduce \u003ccode\u003eregenerator\u003c/code\u003e size more (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime/issues/17287\"\u003e#17287\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.7/packages/babel-runtime\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​babel/runtime\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `braces` from 3.0.2 to 3.0.3\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/74b2db2938fad48a2ea54a9c8bf27a37a62c350d\"\u003e\u003ccode\u003e74b2db2\u003c/code\u003e\u003c/a\u003e 3.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/88f1429a0f47e1dd3813de35211fc97ffda27f9e\"\u003e\u003ccode\u003e88f1429\u003c/code\u003e\u003c/a\u003e update eslint. lint, fix unit tests.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/415d660c3002d1ab7e63dbf490c9851da80596ff\"\u003e\u003ccode\u003e415d660\u003c/code\u003e\u003c/a\u003e Snyk js braces 6838727 (\u003ca href=\"https://redirect.github.com/micromatch/braces/issues/40\"\u003e#40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/190510f79db1adf21d92798b0bb6fccc1f72c9d6\"\u003e\u003ccode\u003e190510f\u003c/code\u003e\u003c/a\u003e fix tests, skip 1 test in test/braces.expand\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/716eb9f12d820b145a831ad678618731927e8856\"\u003e\u003ccode\u003e716eb9f\u003c/code\u003e\u003c/a\u003e readme bump\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/a5851e57f45c3431a94d83fc565754bc10f5bbc3\"\u003e\u003ccode\u003ea5851e5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/braces/issues/37\"\u003e#37\u003c/a\u003e from coderaiser/fix/vulnerability\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/2092bd1fb108d2c59bd62e243b70ad98db961538\"\u003e\u003ccode\u003e2092bd1\u003c/code\u003e\u003c/a\u003e feature: braces: add maxSymbols (\u003ca href=\"https://github.com/micromatch/braces/issues/\"\u003ehttps://github.com/micromatch/braces/issues/\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/9f5b4cf47329351bcb64287223ffb6ecc9a5e6d3\"\u003e\u003ccode\u003e9f5b4cf\u003c/code\u003e\u003c/a\u003e fix: vulnerability (\u003ca href=\"https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727\"\u003ehttps://security.snyk.io/vuln/SNYK-JS-BRACES-6838727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/98414f9f1fabe021736e26836d8306d5de747e0d\"\u003e\u003ccode\u003e98414f9\u003c/code\u003e\u003c/a\u003e remove funding file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/braces/commit/665ab5d561c017a38ba7aafd92cc6655b91d8c14\"\u003e\u003ccode\u003e665ab5d\u003c/code\u003e\u003c/a\u003e update keepEscaping doc (\u003ca href=\"https://redirect.github.com/micromatch/braces/issues/27\"\u003e#27\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/micromatch/braces/compare/3.0.2...3.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `canvg` from 3.0.10 to 3.0.11\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/canvg/canvg/releases\"\u003ecanvg's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.11\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix prototype pollution vulneralbility\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/canvg/canvg/blob/v3.0.11/CHANGELOG.md\"\u003ecanvg's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e3.0.11 (2025-03-13)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix prototype pollution vulneralbility\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.9] - 2021-10-04\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1480\"\u003e#1480\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1484\"\u003e#1484\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.8] - 2021-07-31\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1460\"\u003e#1460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/108\"\u003e#108\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1439\"\u003e#1439\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1364\"\u003e#1364\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.7] - 2020-10-17\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1133\"\u003e#1133\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1001\"\u003e#1001\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/977\"\u003e#977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1196\"\u003e#1196\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1111\"\u003e#1111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/1161\"\u003e#1161\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.6] - 2020-03-25\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/747\"\u003e#747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/897\"\u003e#897\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/908\"\u003e#908\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/941\"\u003e#941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/944\"\u003e#944\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/945\"\u003e#945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/946\"\u003e#946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.1] - 2019-12-03\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/816\"\u003e#816\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0] - 2019-10-23\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eOffscreenCanvas\u003c/code\u003e support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eJavaScript -\u0026gt; TypeScript.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/canvg/canvg/issues/782\"\u003e#782\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/canvg/canvg/commits/v3.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dompurify` from 2.4.7 to 3.4.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cure53/DOMPurify/releases\"\u003edompurify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDOMPurify 3.4.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCleaned up the repository root, renamed some and removed unneeded files\u003c/li\u003e\n\u003cli\u003eFixed an issue with handling of Trusted Types policies, thanks \u003ca href=\"https://github.com/fulstadev\"\u003e\u003ccode\u003e@​fulstadev\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the node iterator for better template scrubbing, thanks \u003ca href=\"https://github.com/IamLeandrooooo\"\u003e\u003ccode\u003e@​IamLeandrooooo\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIncluded formerly missing LICENSE-MPL in published npm package, thanks \u003ca href=\"https://github.com/asamuzaK\"\u003e\u003ccode\u003e@​asamuzaK\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHardened the handling of Shadow Roots when using \u003ccode\u003eIN_PLACE\u003c/code\u003e, thanks \u003ca href=\"https://github.com/GameZoneHacker\"\u003e\u003ccode\u003e@​GameZoneHacker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved a problem leading to permanent hook pollution, thanks \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactored the test suite and expanded test coverage significantly\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed several issues with DOM Clobbering in \u003ccode\u003eIN_PLACE\u003c/code\u003e mode, thanks \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/Bankde\"\u003e\u003ccode\u003e@​Bankde\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHardened the checks for cross-realm \u003ccode\u003eIN_PLACE\u003c/code\u003e and Shadow DOM sanitization, thanks \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/Bankde\"\u003e\u003ccode\u003e@​Bankde\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded more test coverage for \u003ccode\u003eIN_PLACE\u003c/code\u003e and general DOM Clobbering attacks\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a bypass caused by the new HTML element \u003ccode\u003eselectedcontent\u003c/code\u003e added in 3.4.4, thanks \u003ca href=\"https://github.com/KabirAcharya\"\u003e\u003ccode\u003e@​KabirAcharya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNote that this is a security release for an issue introduced in 3.4.4 and should be upgraded to immediately.\u003c/strong\u003e\u003c/p\u003e\n\u003ch2\u003eDOMPurify 3.4.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded the \u003ccode\u003eselectedcontent\u003c/code\u003e element to default allow-list, thanks \u003ca href=\"https://github.com/lukewarlow\"\u003e\u003ccode\u003e@​lukewarlow\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded the \u003ccode\u003ecommand\u003c/code\u003e and \u003ccode\u003ecommandfor\u003c/code\u003e attributes to default allowed-list, thanks \u003ca href=\"https://github.com/lukewarlow\"\u003e\u003ccode\u003e@​lukewarlow\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded better template scrubbing for \u003ccode\u003eIN_PLACE\u003c/code\u003e operations, thanks \u003ca href=\"https://github.com/DEMON1A\"\u003e\u003ccode\u003e@​DEMON1A\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded stronger checks for cross-realm windows, thanks \u003ca href=\"https://github.com/DEMON1A\"\u003e\u003ccode\u003e@​DEMON1A\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/fg0x0\"\u003e\u003ccode\u003e@​fg0x0\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated demo website and made sure it uses the latest from main\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, dependabot, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e🚨 \u003cstrong\u003eThis release had been flagged as deprecated, please use DOMPurify 3.4.5 instead\u003c/strong\u003e 🚨\u003c/p\u003e\n\u003ch2\u003eDOMPurify 3.4.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with handling of nested Shadow DOM trees, thanks \u003ca href=\"https://github.com/fishjojo1\"\u003e\u003ccode\u003e@​fishjojo1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the template regexes to be more robust against ReDoS attacks, thanks \u003ca href=\"https://github.com/aleung27\"\u003e\u003ccode\u003e@​aleung27\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated the node iteration code to catch more Shadow DOM related issues\u003c/li\u003e\n\u003cli\u003eUpdated Playwright and added Node 26 to test matrix\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, release signing, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with URI validation on attributes allowed via \u003ccode\u003eADD_ATTR\u003c/code\u003e callback, thanks \u003ca href=\"https://github.com/nelstrom\"\u003e\u003ccode\u003e@​nelstrom\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with source maps referring to non-existing files, thanks \u003ca href=\"https://github.com/cmdcolin\"\u003e\u003ccode\u003e@​cmdcolin\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated existing workflows, fuzzer, release signing, etc., added more tests\u003c/li\u003e\n\u003cli\u003eBumped several dependencies where possible\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.4.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with on-handler stripping for HTML-spec-reserved custom element names (\u003ccode\u003efont-face\u003c/code\u003e, \u003ccode\u003ecolor-profile\u003c/code\u003e, \u003ccode\u003emissing-glyph\u003c/code\u003e, \u003ccode\u003efont-face-src\u003c/code\u003e, \u003ccode\u003efont-face-uri\u003c/code\u003e, \u003ccode\u003efont-face-format\u003c/code\u003e, \u003ccode\u003efont-face-name\u003c/code\u003e) under permissive \u003ccode\u003eCUSTOM_ELEMENT_HANDLING\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/bcdd8285412dc9c4c149652aed2d712e790d6ccf\"\u003e\u003ccode\u003ebcdd828\u003c/code\u003e\u003c/a\u003e release: 3.4.8 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1439\"\u003e#1439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/ca30f070c360df162a3e3848e80e6fd3c9e74bff\"\u003e\u003ccode\u003eca30f07\u003c/code\u003e\u003c/a\u003e release: 3.4.7 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1414\"\u003e#1414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/bb7739e5bccec7e1ab3dae3f3e42d02db3acaaae\"\u003e\u003ccode\u003ebb7739e\u003c/code\u003e\u003c/a\u003e release: 3.4.6 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1394\"\u003e#1394\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/011b0c78f2a0f57ee54f5fcccb697a46ca6e63ea\"\u003e\u003ccode\u003e011b0c7\u003c/code\u003e\u003c/a\u003e release: 3.4.5 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1382\"\u003e#1382\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5817ad969c15e67dfcd6cb37248d6e9c1553e7c3\"\u003e\u003ccode\u003e5817ad9\u003c/code\u003e\u003c/a\u003e release: 3.4.4 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1374\"\u003e#1374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/520edb0371a9638f9b51f1798051299a250c686b\"\u003e\u003ccode\u003e520edb0\u003c/code\u003e\u003c/a\u003e release: 3.4.3 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1352\"\u003e#1352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/6f67fd396a7b8c64294343999fe607ca1f5299c0\"\u003e\u003ccode\u003e6f67fd3\u003c/code\u003e\u003c/a\u003e Sync/3.4.2 (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1322\"\u003e#1322\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5b0cdbbf52331e854c0a2de875b1a3790ecec2b8\"\u003e\u003ccode\u003e5b0cdbb\u003c/code\u003e\u003c/a\u003e chore: merge main into 3.x for 3.4.1 release (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1301\"\u003e#1301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/09f59115a311469de5b625225760593e551f080a\"\u003e\u003ccode\u003e09f5911\u003c/code\u003e\u003c/a\u003e test: added three more browsers to test setup (OSX, mobile)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/5b16e0b892e82b1779d62b9928b43c4c4ff290b9\"\u003e\u003ccode\u003e5b16e0b\u003c/code\u003e\u003c/a\u003e Getting 3.x branch ready for 3.4.0 release (\u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1250\"\u003e#1250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cure53/DOMPurify/compare/2.4.7...3.4.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flatted` from 3.2.9 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7\"\u003e\u003ccode\u003e3bf0909\u003c/code\u003e\u003c/a\u003e 3.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802\"\u003e\u003ccode\u003e885ddcc\u003c/code\u003e\u003c/a\u003e fix CWE-1321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3\"\u003e\u003ccode\u003e0bdba70\u003c/code\u003e\u003c/a\u003e added flatted-view to the benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20\"\u003e\u003ccode\u003e2a02dce\u003c/code\u003e\u003c/a\u003e 3.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416\"\u003e\u003ccode\u003efba4e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/WebReflection/flatted/issues/89\"\u003e#89\u003c/a\u003e from WebReflection/python-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7\"\u003e\u003ccode\u003e5fe8648\u003c/code\u003e\u003c/a\u003e added \u0026quot;when in Rome\u0026quot; also a test for PHP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0\"\u003e\u003ccode\u003e53517ad\u003c/code\u003e\u003c/a\u003e some minor improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f\"\u003e\u003ccode\u003eb3e2a0c\u003c/code\u003e\u003c/a\u003e Fixing recursion issue in Python too\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad\"\u003e\u003ccode\u003ec4b46db\u003c/code\u003e\u003c/a\u003e Add SECURITY.md for security policy and reporting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988\"\u003e\u003ccode\u003ef86d071\u003c/code\u003e\u003c/a\u003e Create dependabot.yml for version updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/WebReflection/flatted/compare/v3.2.9...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 4.1.0 to 4.2.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.2.0] - 2026-06-01\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003edocs/safety.md\u003c/code\u003e with notes about processing untrusted YAML.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003emaxDepth\u003c/code\u003e (100) loader option. Not a problem, but gives a better\nexception instead of RangeError on stack overflow.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003emaxMergeSeqLength\u003c/code\u003e (20) loader option. Not a problem after \u003ccode\u003emerge\u003c/code\u003e fix,\nbut an additional restriction for safety.\u003c/li\u003e\n\u003cli\u003eAdded sourcemaps to \u003ccode\u003edist/\u003c/code\u003e builds.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eStop resolving numbers with underscores as numeric scalars,...\n\n_Description has been truncated_","html_url":"https://github.com/mneveroff/postlabel/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/mneveroff%2Fpostlabel/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-05-12T20:09:24.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"4432292336","node_id":"PR_kwDOIAra9c7a1Rt6","number":224,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-12T20:13:24.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-12T20:09:24.000Z","updated_at":"2026-05-12T20:13:32.000Z","time_to_close":240,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":7,"packages":[{"name":"@babel/plugin-transform-modules-systemjs","old_version":"7.25.9","new_version":"7.29.4","repository_url":"https://github.com/babel/babel"},{"name":"axios","old_version":"1.12.2","new_version":"1.16.0","repository_url":"https://github.com/axios/axios"},{"name":"fast-uri","old_version":"3.0.6","new_version":"3.1.2","repository_url":"https://github.com/fastify/fast-uri"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"postcss","old_version":"8.5.1","new_version":"8.5.14","repository_url":"https://github.com/postcss/postcss"},{"name":"simple-git","old_version":"3.35.1","new_version":"3.36.0","repository_url":"https://github.com/steveukx/git-js"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [@babel/plugin-transform-modules-systemjs](https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs) | `7.25.9` | `7.29.4` |\n| [axios](https://github.com/axios/axios) | `1.12.2` | `1.16.0` |\n| [fast-uri](https://github.com/fastify/fast-uri) | `3.0.6` | `3.1.2` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [postcss](https://github.com/postcss/postcss) | `8.5.1` | `8.5.14` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.35.1` | `3.36.0` |\n\n\nUpdates `@babel/plugin-transform-modules-systemjs` from 7.25.9 to 7.29.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e@​babel/plugin-transform-modules-systemjs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.4 (2026-05-05)\u003c/h2\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-modules-systemjs\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17974\"\u003e#17974\u003c/a\u003e [7.x backport]fix(systemjs): improve module string name support (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 1\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.3 (2026-04-30)\u003c/h2\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17923\"\u003e#17923\u003c/a\u003e Support flow extends bound (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-create-class-features-plugin\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17931\"\u003e#17931\u003c/a\u003e fix(decorators): replace super within all removed static elements (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-register\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17915\"\u003e#17915\u003c/a\u003e Fix thread synchronization issues in \u003ccode\u003e@babel/register\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-compat-data\u003c/code\u003e, \u003ccode\u003ebabel-plugin-bugfix-safari-rest-destructuring-rhs-array\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17788\"\u003e#17788\u003c/a\u003e Add bugfix plugin for Safari array rest destructuring bug (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17782\"\u003e#17782\u003c/a\u003e Improve trailing comma comment handling (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:memo: Documentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17847\"\u003e#17847\u003c/a\u003e Replace npmjs.com links with npmx.dev (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-import-to-platform-api\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-modules\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17818\"\u003e#17818\u003c/a\u003e Load async Wasm and JSON imports in parallel (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 4\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.2 (2026-03-16)\u003c/h2\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17840\"\u003e#17840\u003c/a\u003e [7.x backport] async x =\u0026gt; {} must be in leading pos (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helpers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17805\"\u003e#17805\u003c/a\u003e [7.x backport] fix: Properly handle await in finally (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-preset-env\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a458f66074b97d54773db8159af673d23b26079b\"\u003e\u003ccode\u003ea458f66\u003c/code\u003e\u003c/a\u003e v7.29.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/32ebd5aaf2526ddd176fd6a3d1e3dc594abdc8d9\"\u003e\u003ccode\u003e32ebd5a\u003c/code\u003e\u003c/a\u003e [7.x backport]fix(systemjs): improve module string name support (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17974\"\u003e#17974\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aa8394e454337d118ac3d40bfa3ee1a3cb3f3ed2\"\u003e\u003ccode\u003eaa8394e\u003c/code\u003e\u003c/a\u003e v7.29.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/0053db620c05acf0036f593b5aaf4e372daa79d0\"\u003e\u003ccode\u003e0053db6\u003c/code\u003e\u003c/a\u003e Update polyfill packages (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17727\"\u003e#17727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/61647ae2397c82c3c71f077b5ab109106a5cac0f\"\u003e\u003ccode\u003e61647ae\u003c/code\u003e\u003c/a\u003e v7.28.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a177d551adba99773f4ff00ea9bf46550def6132\"\u003e\u003ccode\u003ea177d55\u003c/code\u003e\u003c/a\u003e [Babel 8] Use \u003ccode\u003et.traverseFast\u003c/code\u003e to replace some \u003ccode\u003epath.traverse\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17518\"\u003e#17518\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/eebd3a06021c13d335b5b0bd79734df3abbea678\"\u003e\u003ccode\u003eeebd3a0\u003c/code\u003e\u003c/a\u003e v7.27.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/317e332e650bc04907bc787ab79f930288a3e71e\"\u003e\u003ccode\u003e317e332\u003c/code\u003e\u003c/a\u003e Enforce node protocol import (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17207\"\u003e#17207\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/fdc0fb59e119ee0b38bced63867a344a5b4bc2f3\"\u003e\u003ccode\u003efdc0fb5\u003c/code\u003e\u003c/a\u003e [Babel 8] Bump nodejs requirements to \u003ccode\u003e^20.19.0 || \u0026gt;= 22.12.0\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17204\"\u003e#17204\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cd24cc07ef6558b7f6510f9177f6393c91b0549f\"\u003e\u003ccode\u003ecd24cc0\u003c/code\u003e\u003c/a\u003e chore: Update TS 5.7 (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-plugin-transform-modules-systemjs/issues/17053\"\u003e#17053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.4/packages/babel-plugin-transform-modules-systemjs\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for \u003ccode\u003e@​babel/plugin-transform-modules-systemjs\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.12.2 to 1.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFetch adapter now enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e and \u003ccode\u003emaxContentLength\u003c/code\u003e.\u003c/strong\u003e These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy requests now preserve user-supplied \u003ccode\u003eHost\u003c/code\u003e headers.\u003c/strong\u003e Previously, the proxy path could overwrite a custom \u003ccode\u003eHost\u003c/code\u003e. Virtual-host-style routing through a proxy will now behave correctly. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBasic auth credentials embedded in URLs are now URL-decoded.\u003c/strong\u003e If you have percent-encoded credentials in a URL (e.g. \u003ccode\u003ehttps://user:p%40ss@host\u003c/code\u003e), the decoded value is what now goes on the wire. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eparseProtocol\u003c/code\u003e now strictly requires a colon in the protocol separator.\u003c/strong\u003e Strings that loosely parsed as protocols before may no longer match. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecated \u003ccode\u003eunescape()\u003c/code\u003e replaced with modern UTF-8 encoding.\u003c/strong\u003e Non-ASCII URL handling is now spec-correct; consumers depending on legacy \u003ccode\u003eunescape()\u003c/code\u003e quirks may see different output bytes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003etransformRequest\u003c/code\u003e input typing change was reverted.\u003c/strong\u003e The typing change introduced in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e was reverted in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e after follow-up review — net behavior is unchanged from 1.15.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eQUERY HTTP Method:\u003c/strong\u003e Added support for the QUERY HTTP method across adapters and type definitions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10802\"\u003e#10802\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eECONNREFUSED Error Constant:\u003c/strong\u003e Exposed \u003ccode\u003eECONNREFUSED\u003c/code\u003e as a constant on \u003ccode\u003eAxiosError\u003c/code\u003e so callers can match connection-refused failures without comparing string literals (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/6485\"\u003e#6485\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEncode Helper Export:\u003c/strong\u003e Exported the internal \u003ccode\u003eencode\u003c/code\u003e helper from \u003ccode\u003ebuildURL\u003c/code\u003e so userland param serializers can reuse the same encoding logic that axios uses internally. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6897\"\u003e#6897\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Redirects \u0026amp; Headers:\u003c/strong\u003e Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing \u003ccode\u003erequestDetails\u003c/code\u003e argument on \u003ccode\u003ebeforeRedirect\u003c/code\u003e, preserved user-supplied \u003ccode\u003eHost\u003c/code\u003e headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10794\"\u003e#10794\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10800\"\u003e#10800\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6241\"\u003e#6241\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Streams \u0026amp; Timeouts:\u003c/strong\u003e Preserved the partial response object on \u003ccode\u003eAxiosError\u003c/code\u003e when a stream is aborted after headers arrive, honoured the \u003ccode\u003etimeout\u003c/code\u003e option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and \u003ccode\u003emaxRedirects: 0\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10708\"\u003e#10708\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7149\"\u003e#7149\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Enforced \u003ccode\u003emaxBodyLength\u003c/code\u003e / \u003ccode\u003emaxContentLength\u003c/code\u003e in the fetch adapter, set the \u003ccode\u003eUser-Agent\u003c/code\u003e header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a \u003ccode\u003eTypeError\u003c/code\u003e in restricted environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10772\"\u003e#10772\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10806\"\u003e#10806\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Adapter:\u003c/strong\u003e Unsubscribed the \u003ccode\u003ecancelToken\u003c/code\u003e and \u003ccode\u003eAbortSignal\u003c/code\u003e listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e Attached the parsed response to \u003ccode\u003eAxiosError\u003c/code\u003e when \u003ccode\u003eJSON.parse\u003c/code\u003e fails inside \u003ccode\u003edispatchRequest\u003c/code\u003e, prevented \u003ccode\u003esettle\u003c/code\u003e from emitting \u003ccode\u003eundefined\u003c/code\u003e error codes, and tightened the \u003ccode\u003eparseProtocol\u003c/code\u003e regex to require a colon in the protocol separator. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10724\"\u003e#10724\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes \u0026amp; Exports:\u003c/strong\u003e Aligned the CommonJS \u003ccode\u003eCancelToken\u003c/code\u003e typings with the ESM build, fixed a compiler error caused by \u003ccode\u003eRawAxiosHeaders\u003c/code\u003e, and re-exported \u003ccode\u003ecreate\u003c/code\u003e from the package index. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7414\"\u003e#7414\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6389\"\u003e#6389\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6460\"\u003e#6460\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUTF-8 Encoding:\u003c/strong\u003e Replaced the deprecated \u003ccode\u003eunescape()\u003c/code\u003e call with a modern UTF-8 encoding implementation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMisc Cleanup:\u003c/strong\u003e Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRefactor — ES6 Modernisation:\u003c/strong\u003e Modernised the \u003ccode\u003eutils\u003c/code\u003e module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Hardened the HTTP test server lifecycle to fix flaky \u003ccode\u003eFormData\u003c/code\u003e EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10820\"\u003e#10820\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10791\"\u003e#10791\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10796\"\u003e#10796\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Documented \u003ccode\u003eparamsSerializer.encode\u003c/code\u003e for strict RFC 3986 query encoding, updated the \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10821\"\u003e#10821\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10782\"\u003e#10782\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10759\"\u003e#10759\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10804\"\u003e#10804\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReverted:\u003c/strong\u003e Reverted the \u003ccode\u003etransformRequest\u003c/code\u003e input typing change from \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e after follow-up review. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eactions/setup-node\u003c/code\u003e, the \u003ccode\u003egithub-actions\u003c/code\u003e group, and \u003ccode\u003epostcss\u003c/code\u003e (in \u003ccode\u003e/docs\u003c/code\u003e) to their latest versions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10785\"\u003e#10785\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10813\"\u003e#10813\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10814\"\u003e#10814\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRelease:\u003c/strong\u003e Updated changelog and packages, and prepared the 1.16.0 release. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10790\"\u003e#10790\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/singhankit001\"\u003e\u003ccode\u003e@​singhankit001\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/iruizsalinas\"\u003e\u003ccode\u003e@​iruizsalinas\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/MarcosNocetti\"\u003e\u003ccode\u003e@​MarcosNocetti\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/deepview-autofix\"\u003e\u003ccode\u003e@​deepview-autofix\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFetch adapter now enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e and \u003ccode\u003emaxContentLength\u003c/code\u003e.\u003c/strong\u003e These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy requests now preserve user-supplied \u003ccode\u003eHost\u003c/code\u003e headers.\u003c/strong\u003e Previously, the proxy path could overwrite a custom \u003ccode\u003eHost\u003c/code\u003e. Virtual-host-style routing through a proxy will now behave correctly. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBasic auth credentials embedded in URLs are now URL-decoded.\u003c/strong\u003e If you have percent-encoded credentials in a URL (e.g. \u003ccode\u003ehttps://user:p%40ss@host\u003c/code\u003e), the decoded value is what now goes on the wire. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eparseProtocol\u003c/code\u003e now strictly requires a colon in the protocol separator.\u003c/strong\u003e Strings that loosely parsed as protocols before may no longer match. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecated \u003ccode\u003eunescape()\u003c/code\u003e replaced with modern UTF-8 encoding.\u003c/strong\u003e Non-ASCII URL handling is now spec-correct; consumers depending on legacy \u003ccode\u003eunescape()\u003c/code\u003e quirks may see different output bytes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003etransformRequest\u003c/code\u003e input typing change was reverted.\u003c/strong\u003e The typing change introduced in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e was reverted in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e after follow-up review — net behavior is unchanged from 1.15.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eQUERY HTTP Method:\u003c/strong\u003e Added support for the QUERY HTTP method across adapters and type definitions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10802\"\u003e#10802\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eECONNREFUSED Error Constant:\u003c/strong\u003e Exposed \u003ccode\u003eECONNREFUSED\u003c/code\u003e as a constant on \u003ccode\u003eAxiosError\u003c/code\u003e so callers can match connection-refused failures without comparing string literals (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/6485\"\u003e#6485\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEncode Helper Export:\u003c/strong\u003e Exported the internal \u003ccode\u003eencode\u003c/code\u003e helper from \u003ccode\u003ebuildURL\u003c/code\u003e so userland param serializers can reuse the same encoding logic that axios uses internally. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6897\"\u003e#6897\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Redirects \u0026amp; Headers:\u003c/strong\u003e Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing \u003ccode\u003erequestDetails\u003c/code\u003e argument on \u003ccode\u003ebeforeRedirect\u003c/code\u003e, preserved user-supplied \u003ccode\u003eHost\u003c/code\u003e headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10794\"\u003e#10794\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10800\"\u003e#10800\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6241\"\u003e#6241\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Streams \u0026amp; Timeouts:\u003c/strong\u003e Preserved the partial response object on \u003ccode\u003eAxiosError\u003c/code\u003e when a stream is aborted after headers arrive, honoured the \u003ccode\u003etimeout\u003c/code\u003e option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and \u003ccode\u003emaxRedirects: 0\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10708\"\u003e#10708\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7149\"\u003e#7149\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Enforced \u003ccode\u003emaxBodyLength\u003c/code\u003e / \u003ccode\u003emaxContentLength\u003c/code\u003e in the fetch adapter, set the \u003ccode\u003eUser-Agent\u003c/code\u003e header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a \u003ccode\u003eTypeError\u003c/code\u003e in restricted environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10772\"\u003e#10772\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10806\"\u003e#10806\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Adapter:\u003c/strong\u003e Unsubscribed the \u003ccode\u003ecancelToken\u003c/code\u003e and \u003ccode\u003eAbortSignal\u003c/code\u003e listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e Attached the parsed response to \u003ccode\u003eAxiosError\u003c/code\u003e when \u003ccode\u003eJSON.parse\u003c/code\u003e fails inside \u003ccode\u003edispatchRequest\u003c/code\u003e, prevented \u003ccode\u003esettle\u003c/code\u003e from emitting \u003ccode\u003eundefined\u003c/code\u003e error codes, and tightened the \u003ccode\u003eparseProtocol\u003c/code\u003e regex to require a colon in the protocol separator. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10724\"\u003e#10724\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes \u0026amp; Exports:\u003c/strong\u003e Aligned the CommonJS \u003ccode\u003eCancelToken\u003c/code\u003e typings with the ESM build, fixed a compiler error caused by \u003ccode\u003eRawAxiosHeaders\u003c/code\u003e, and re-exported \u003ccode\u003ecreate\u003c/code\u003e from the package index. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7414\"\u003e#7414\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6389\"\u003e#6389\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6460\"\u003e#6460\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUTF-8 Encoding:\u003c/strong\u003e Replaced the deprecated \u003ccode\u003eunescape()\u003c/code\u003e call with a modern UTF-8 encoding implementation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMisc Cleanup:\u003c/strong\u003e Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRefactor — ES6 Modernisation:\u003c/strong\u003e Modernised the \u003ccode\u003eutils\u003c/code\u003e module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Hardened the HTTP test server lifecycle to fix flaky \u003ccode\u003eFormData\u003c/code\u003e EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10820\"\u003e#10820\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10791\"\u003e#10791\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10796\"\u003e#10796\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Documented \u003ccode\u003eparamsSerializer.encode\u003c/code\u003e for strict RFC 3986 query encoding, updated the \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10821\"\u003e#10821\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10782\"\u003e#10782\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10759\"\u003e#10759\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10804\"\u003e#10804\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReverted:\u003c/strong\u003e Reverted the \u003ccode\u003etransformRequest\u003c/code\u003e input typing change from \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e after follow-up review. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eactions/setup-node\u003c/code\u003e, the \u003ccode\u003egithub-actions\u003c/code\u003e group, and \u003ccode\u003epostcss\u003c/code\u003e (in \u003ccode\u003e/docs\u003c/code\u003e) to their latest versions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10785\"\u003e#10785\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10813\"\u003e#10813\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10814\"\u003e#10814\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRelease:\u003c/strong\u003e Updated changelog and packages, and prepared the 1.16.0 release. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10790\"\u003e#10790\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/singhankit001\"\u003e\u003ccode\u003e@​singhankit001\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/iruizsalinas\"\u003e\u003ccode\u003e@​iruizsalinas\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/MarcosNocetti\"\u003e\u003ccode\u003e@​MarcosNocetti\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/deepview-autofix\"\u003e\u003ccode\u003e@​deepview-autofix\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/df53d7dd99b202fb194217abd127ae6a630e70dc\"\u003e\u003ccode\u003edf53d7d\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.16.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9d92bcd32639d1eea5b89f03ae45f248d3bb058e\"\u003e\u003ccode\u003e9d92bcd\u003c/code\u003e\u003c/a\u003e fix: gadgets and smaller issues (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/5107ee69aee527b19eabaf80000ca65752135435\"\u003e\u003ccode\u003e5107ee6\u003c/code\u003e\u003c/a\u003e fix: prevent undefined error codes in settle (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e57349992f230b6b13e80613eb84302560aa5ba8\"\u003e\u003ccode\u003ee573499\u003c/code\u003e\u003c/a\u003e fix(fetch): defer global access in fetch adapter (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ad68e1a484b50086af427f767bbd7d6e3aab7ac3\"\u003e\u003ccode\u003ead68e1a\u003c/code\u003e\u003c/a\u003e fix(http): honor timeout during connect without redirects (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/2a51828213128691d2e37502b5eb2cf4965a737d\"\u003e\u003ccode\u003e2a51828\u003c/code\u003e\u003c/a\u003e fix(http): decode URL basic auth credentials (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0e8b6bbb542131bae9940618d84d5286255d4db1\"\u003e\u003ccode\u003e0e8b6bb\u003c/code\u003e\u003c/a\u003e fix(http): preserve user-supplied Host header when forwarding through a proxy...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/79f39e1d041dca87173226d0255f90eaf252564b\"\u003e\u003ccode\u003e79f39e1\u003c/code\u003e\u003c/a\u003e docs: document paramsSerializer.encode for strict RFC 3986 query encoding (\u003ca href=\"https://redirect.github.com/axios/axios/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0fe3a5fc14829535e1d517c662d448e86c33438e\"\u003e\u003ccode\u003e0fe3a5f\u003c/code\u003e\u003c/a\u003e [Docs/Types] Update \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions for ES2023 and add ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/cd6737fd84bdb7caf2a319d3579573a49f9d238d\"\u003e\u003ccode\u003ecd6737f\u003c/code\u003e\u003c/a\u003e chore: matches the sibling responseStream.on(aborted) handler and added tests...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.12.2...v1.16.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-uri` from 3.0.6 to 3.1.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fast-uri/releases\"\u003efast-uri's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.2\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\"\u003ehttps://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle malformed fragment decoding as a parse error by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/171\"\u003efastify/fast-uri#171\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.1...v3.1.2\"\u003ehttps://github.com/fastify/fast-uri/compare/v3.1.1...v3.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6\"\u003ehttps://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps-dev): bump tsd from 0.32.0 to 0.33.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/148\"\u003efastify/fast-uri#148\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/149\"\u003efastify/fast-uri#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(.npmrc): ignore scripts by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/150\"\u003efastify/fast-uri#150\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): remove \u003ccode\u003e@​fastify/pre-commit\u003c/code\u003e by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/151\"\u003efastify/fast-uri#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/152\"\u003efastify/fast-uri#152\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(ci): add concurrency config by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/153\"\u003efastify/fast-uri#153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/154\"\u003efastify/fast-uri#154\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/156\"\u003efastify/fast-uri#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(license): standardise license notice by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/159\"\u003efastify/fast-uri#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estyle: remove trailing whitespace by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/161\"\u003efastify/fast-uri#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove unused github files by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/162\"\u003efastify/fast-uri#162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update readme by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/164\"\u003efastify/fast-uri#164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-manager.yml from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/165\"\u003efastify/fast-uri#165\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/166\"\u003efastify/fast-uri#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump neostandard from 0.12.2 to 0.13.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/167\"\u003efastify/fast-uri#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add lock-threads workflow by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/169\"\u003efastify/fast-uri#169\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/162\"\u003efastify/fast-uri#162\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.1\"\u003ehttps://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: remove master branch support by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/126\"\u003efastify/fast-uri#126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(test) remove .gitkeep by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/128\"\u003efastify/fast-uri#128\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(ci): set job permissions by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/129\"\u003efastify/fast-uri#129\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: set permissions at workflow level by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/131\"\u003efastify/fast-uri#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: set workflow permissions to read-only by default by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/132\"\u003efastify/fast-uri#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(ci): restore job level permissions by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/133\"\u003efastify/fast-uri#133\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump tsd from 0.31.2 to 0.32.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/134\"\u003efastify/fast-uri#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(ci): pin actions to commit-hash by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/135\"\u003efastify/fast-uri#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add node 24 to test matrix by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fast-uri/pull/136\"\u003efastify/fast-uri#136\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/919dd8ea7689fcc220d0d9b71307f5095e723ef9\"\u003e\u003ccode\u003e919dd8e\u003c/code\u003e\u003c/a\u003e Bumped v3.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/c65ba573714af6b8e19e481d9444c27bc4355d07\"\u003e\u003ccode\u003ec65ba57\u003c/code\u003e\u003c/a\u003e fixup: linting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/6c86c17c3d76fb93aa3700ec6c0fa00faeb97293\"\u003e\u003ccode\u003e6c86c17\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/a95158ad308df4d92bbde4eba699ce5165e9f796\"\u003e\u003ccode\u003ea95158a\u003c/code\u003e\u003c/a\u003e Handle malformed fragment decoding without throwing (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/171\"\u003e#171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/cea547c91c6aae610041b17b75792ca4aa035a6d\"\u003e\u003ccode\u003ecea547c\u003c/code\u003e\u003c/a\u003e Bumped v3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/876ce79b662c3e5015e4e7dffe6f37752ad34f35\"\u003e\u003ccode\u003e876ce79\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/dcdf690b71a7bb3a19887ada65a9ab160d83bcc0\"\u003e\u003ccode\u003edcdf690\u003c/code\u003e\u003c/a\u003e ci: add lock-threads workflow (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/169\"\u003e#169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/c860e6589b1ac346f66e114b4eadb9613768108c\"\u003e\u003ccode\u003ec860e65\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump neostandard from 0.12.2 to 0.13.0 (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/167\"\u003e#167\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/9b4c6dc82fde0ca44e674403ece9185d85bb6d5f\"\u003e\u003ccode\u003e9b4c6dc\u003c/code\u003e\u003c/a\u003e build(deps): bump fastify/workflows/.github/workflows/plugins-ci.yml (\u003ca href=\"https://redirect.github.com/fastify/fast-uri/issues/166\"\u003e#166\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fast-uri/commit/85d09a9f7aa76b32c2bb005a90a71e144c361d24\"\u003e\u003ccode\u003e85d09a9\u003c/code\u003e\u003c/a\u003e build(deps): bump fastify/workflows/.github/workflows/plugins-ci-package-mana...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fast-uri/compare/v3.0.6...v3.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `follow-redirects` from 1.15.9 to 1.16.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/0c23a223067201c368035e82954c11eb2578a33b\"\u003e\u003ccode\u003e0c23a22\u003c/code\u003e\u003c/a\u003e Release version 1.16.0 of the npm package.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/844c4d302ac963d29bdb5dc1754ec7df3d70d7f9\"\u003e\u003ccode\u003e844c4d3\u003c/code\u003e\u003c/a\u003e Add sensitiveHeaders option.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/5e8b8d024e2c76f804a284258e585ecb49a575be\"\u003e\u003ccode\u003e5e8b8d0\u003c/code\u003e\u003c/a\u003e ci: add Node.js 24.x to the CI matrix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/7953e2255aa0b93602eed3804f3bc5e6923a03af\"\u003e\u003ccode\u003e7953e22\u003c/code\u003e\u003c/a\u003e ci: upgrade GitHub Actions to use setup-node@v6 and checkout@v6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/86dc1f86e4b56bcd642c78384d51f10f123aea75\"\u003e\u003ccode\u003e86dc1f8\u003c/code\u003e\u003c/a\u003e Sanitizing input.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/21ef28a544c5e57f4c34b8476d75f2144609a1eb\"\u003e\u003ccode\u003e21ef28a\u003c/code\u003e\u003c/a\u003e Release version 1.15.11 of the npm package.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/7c88135da3bd0681a7e156ee66b16b2f6f98b480\"\u003e\u003ccode\u003e7c88135\u003c/code\u003e\u003c/a\u003e Roll back tree shaking.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/6e389ba094beec211a8847788a146917a16c1bdb\"\u003e\u003ccode\u003e6e389ba\u003c/code\u003e\u003c/a\u003e Release version 1.15.10 of the npm package.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/5bc496e0229abda823221e0c6267926a3f93f262\"\u003e\u003ccode\u003e5bc496e\u003c/code\u003e\u003c/a\u003e Shake me up before you go-go.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/follow-redirects/follow-redirects/commit/694d6b47a42bc8377e5ef1480394de451e16bd5b\"\u003e\u003ccode\u003e694d6b4\u003c/code\u003e\u003c/a\u003e Bump minimist from 1.2.5 to 1.2.8\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/follow-redirects/follow-redirects/compare/v1.15.9...v1.16.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 2.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `postcss` from 8.5.1 to 8.5.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/releases\"\u003epostcss's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.5.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed custom syntax regression (by \u003ca href=\"https://github.com/43081j\"\u003e\u003ccode\u003e@​43081j\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epostcss-scss\u003c/code\u003e commend regression.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed reading any file via user-generated CSS.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eopts.unsafeMap\u003c/code\u003e to disable checks.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed nested brackets parsing performance (by \u003ca href=\"https://github.com/offset\"\u003e\u003ccode\u003e@​offset\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed XSS via unescaped \u003ccode\u003e\u0026lt;/style\u0026gt;\u003c/code\u003e in non-bundler cases (by \u003ca href=\"https://github.com/TharVid\"\u003e\u003ccode\u003e@​TharVid\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up source map encoding paring in case of the error.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eProcessor#version\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImproved source map annotation cleaning performance (by CodeAnt AI).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003eContainerWithChildren\u003c/code\u003e type discriminating (by \u003ca href=\"https://github.com/Goodwine\"\u003e\u003ccode\u003e@​Goodwine\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003epackage.json\u003c/code\u003e→\u003ccode\u003eexports\u003c/code\u003e compatibility with some tools (by \u003ca href=\"https://github.com/JounQin\"\u003e\u003ccode\u003e@​JounQin\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Parcel compatibility issue (by \u003ca href=\"https://github.com/git-sumitchaudhary\"\u003e\u003ccode\u003e@​git-sumitchaudhary\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded more details to \u003ccode\u003eUnknown word\u003c/code\u003e error (by \u003ca href=\"https://github.com/hiepxanh\"\u003e\u003ccode\u003e@​hiepxanh\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed types (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eFixed docs (by \u003ca href=\"https://github.com/catnipan\"\u003e\u003ccode\u003e@​catnipan\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed end position of rules with semicolon (by \u003ca href=\"https://github.com/romainmenke\"\u003e\u003ccode\u003e@​romainmenke\u003c/code\u003e\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/postcss/postcss/blob/main/CHANGELOG.md\"\u003epostcss's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/3ec13948ae0006e1bde2dfb545346341ac8b2dcf\"\u003e\u003ccode\u003e3ec1394\u003c/code\u003e\u003c/a\u003e Release 8.5.14 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/f2bb827b20b591080977412555aa3e5baf588620\"\u003e\u003ccode\u003ef2bb827\u003c/code\u003e\u003c/a\u003e Update dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/d75953d60854ad835fd21dde0b11081522341020\"\u003e\u003ccode\u003ed75953d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/postcss/postcss/issues/2084\"\u003e#2084\u003c/a\u003e from 43081j/raw-raws-rawing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/68bd2139b5dcaf5a682bc2e8826d8557be2d1480\"\u003e\u003ccode\u003e68bd213\u003c/code\u003e\u003c/a\u003e fix: always call \u003ccode\u003eraw\u003c/code\u003e to retrieve raw values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/af58cf1b7af02e9b9fcb138a4a2d7ef3450158b1\"\u003e\u003ccode\u003eaf58cf1\u003c/code\u003e\u003c/a\u003e Release 8.5.13 version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/f227dbd0e9443e5f33e18e633b8b4d2b55aac5ee\"\u003e\u003ccode\u003ef227dbd\u003c/code\u003e\u003c/a\u003e Temporary ignore pnpm 11 config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/d3abd40d723cf3559e5ddb5fc738b7cb64e92bb0\"\u003e\u003ccode\u003ed3abd40\u003c/code\u003e\u003c/a\u003e Update dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/dd06c3e11362087bc18f9c20cee30fd82bda3de9\"\u003e\u003ccode\u003edd06c3e\u003c/code\u003e\u003c/a\u003e Revert stringifier changes because of the conflict with postcss-scss\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/ae889c815fb88d785401a88f1a7dfc8cb11915fb\"\u003e\u003ccode\u003eae889c8\u003c/code\u003e\u003c/a\u003e Try to fix CI\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/postcss/postcss/commit/e0093e49bcf00347383a13e40bb1f67bc823ca15\"\u003e\u003ccode\u003ee0093e4\u003c/code\u003e\u003c/a\u003e Move to pnpm 11\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/postcss/postcss/compare/8.5.1...8.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `simple-git` from 3.35.1 to 3.36.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/releases\"\u003esimple-git's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esimple-git@3.36.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e89a2294: Extend known exploitable configuration keys and per-task environment variables.\u003c/p\u003e\n\u003cp\u003eNote - \u003ccode\u003eParsedVulnerabilities\u003c/code\u003e from \u003ccode\u003eargv-parser\u003c/code\u003e is removed in favour of a readonly array of \u003ccode\u003eVulnerability\u003c/code\u003e to match usage in \u003ccode\u003esimple-git\u003c/code\u003e, rolled into the new \u003ccode\u003evulnerabilityCheck\u003c/code\u003e for simpler access to the identified issues.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/zebbern\"\u003e\u003ccode\u003e@​zebbern\u003c/code\u003e\u003c/a\u003e for identifying the need to block \u003ccode\u003ecore.fsmonitor\u003c/code\u003e.\nThanks to \u003ca href=\"https://github.com/kodareef5\"\u003e\u003ccode\u003e@​kodareef5\u003c/code\u003e\u003c/a\u003e for identifying the need to block \u003ccode\u003eGIT_CONFIG_COUNT\u003c/code\u003e environment variables and \u003ccode\u003e--template\u003c/code\u003e / \u003ccode\u003emerge\u003c/code\u003e related config.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e1ad57e8: Remove conflicting node:buffer import\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [89a2294]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [675570a]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/argv-parser\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.1.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/args-pathspec\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.0.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.35.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e0cf9d8c: Improvements for mono-repo publishing pipeline\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [0cf9d8c]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/args-pathspec\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.0.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/argv-parser\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.0.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/blob/main/simple-git/CHANGELOG.md\"\u003esimple-git's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.36.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e89a2294: Extend known exploitable configuration keys and per-task environment variables.\u003c/p\u003e\n\u003cp\u003eNote - \u003ccode\u003eParsedVulnerabilities\u003c/code\u003e from \u003ccode\u003eargv-parser\u003c/code\u003e is removed in favour of a readonly array of \u003ccode\u003eVulnerability\u003c/code\u003e to match usage in \u003ccode\u003esimple-git\u003c/code\u003e, rolled into the new \u003ccode\u003evulnerabilityCheck\u003c/code\u003e for simpler access to the identified issues.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/zebbern\"\u003e\u003ccode\u003e@​zebbern\u003c/code\u003e\u003c/a\u003e for identifying the need to block \u003ccode\u003ecore.fsmonitor\u003c/code\u003e.\nThanks to \u003ca href=\"https://github.com/kodareef5\"\u003e\u003ccode\u003e@​kodareef5\u003c/code\u003e\u003c/a\u003e for identifying the need to block \u003ccode\u003eGIT_CONFIG_COUNT\u003c/code\u003e environment variables and \u003ccode\u003e--template\u003c/code\u003e / \u003ccode\u003emerge\u003c/code\u003e related config.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e1ad57e8: Remove conflicting node:buffer import\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [89a2294]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [675570a]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/argv-parser\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.1.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/args-pathspec\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.0.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.35.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e0cf9d8c: Improvements for mono-repo publishing pipeline\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [0cf9d8c]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/args-pathspec\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.0.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​simple-git/argv-parser\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.0.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/7dc1a532a9ec92fb08c93202954be73175b07d83\"\u003e\u003ccode\u003e7dc1a53\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/76f5376bd418cb8baf5ec32757af442d47128e22\"\u003e\u003ccode\u003e76f5376\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/steveukx/git-js/tree/HEAD/simple-git/issues/1061\"\u003e#1061\u003c/a\u003e from Vinzent03/fix/buffer-import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/89a2294febed5dfe737c4c735d936bb6018746a8\"\u003e\u003ccode\u003e89a2294\u003c/code\u003e\u003c/a\u003e Environment Parsing (\u003ca href=\"https://github.com/steveukx/git-js/tree/HEAD/simple-git/issues/1156\"\u003e#1156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/1b91b762f047777ca6686f34ac3f7b8a543a4780\"\u003e\u003ccode\u003e1b91b76\u003c/code\u003e\u003c/a\u003e fix: remove explicit node:buffer import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/e390685960a3461875dce89d87ab80e3143d79fe\"\u003e\u003ccode\u003ee390685\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/3c9e4b8309667d0cb4102cda770f92075fc781dd\"\u003e\u003ccode\u003e3c9e4b8\u003c/code\u003e\u003c/a\u003e Pin version of \u003ccode\u003e@​simple-git/args-pathspec\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/94ee21fd5a2a6182fbf0f218a5efca2057b567cd\"\u003e\u003ccode\u003e94ee21f\u003c/code\u003e\u003c/a\u003e Export \u003ccode\u003epathspec\u003c/code\u003e types through \u003ccode\u003esimple-git\u003c/code\u003e for backward compatibility\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/steveukx/git-js/commits/simple-git@3.36.0/simple-git\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Enterprise-CMCS/seatool-connectors/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Enterprise-CMCS/seatool-connectors/pull/224","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Enterprise-CMCS%2Fseatool-connectors/issues/224","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/224/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-05-04T04:10:32.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"4373963305","node_id":"PR_kwDONYUC2c7X34sq","number":62,"state":"open","title":"Bump the npm_and_yarn group across 2 directories with 23 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-04T04:10:32.000Z","updated_at":"2026-05-04T04:10:40.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":23,"packages":[{"name":"uuid","old_version":"10.0.0","new_version":"14.0.0","repository_url":"https://github.com/uuidjs/uuid"},{"name":"ajv","old_version":"6.12.6","new_version":"6.15.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.14","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"cookie","old_version":"0.4.2","new_version":"0.7.2","repository_url":"https://github.com/jshttp/cookie"},{"name":"@smithy/config-resolver","old_version":"4.1.4","new_version":"4.4.17","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"axios","old_version":"1.7.7","new_version":"1.16.0","repository_url":"https://github.com/axios/axios"},{"name":"bn.js","old_version":"5.2.1","new_version":"5.2.3","repository_url":"https://github.com/indutny/bn.js"},{"name":"bn.js","old_version":"4.12.0","new_version":"4.12.3","repository_url":"https://github.com/indutny/bn.js"},{"name":"body-parser","old_version":"2.2.0","new_version":"2.2.2","repository_url":"https://github.com/expressjs/body-parser"},{"name":"fast-xml-parser","old_version":"5.2.5","new_version":"5.7.2","repository_url":"https://github.com/NaturalIntelligence/fast-xml-parser"},{"name":"flatted","old_version":"3.3.1","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"handlebars","old_version":"4.7.8","new_version":"4.7.9","repository_url":"https://github.com/handlebars-lang/handlebars.js"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"multer","old_version":"2.0.2","new_version":"2.1.1","repository_url":"https://github.com/expressjs/multer"},{"name":"path-to-regexp","old_version":"8.2.0","new_version":"8.4.2","repository_url":"https://github.com/pillarjs/path-to-regexp"},{"name":"tar","old_version":"6.2.1","new_version":"7.5.11","repository_url":"https://github.com/isaacs/node-tar"},{"name":"validator","old_version":"13.12.0","new_version":"13.15.35","repository_url":"https://github.com/validatorjs/validator.js"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 19 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [uuid](https://github.com/uuidjs/uuid) | `10.0.0` | `14.0.0` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.15.0` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.14` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [cookie](https://github.com/jshttp/cookie) | `0.4.2` | `0.7.2` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `4.1.4` | `4.4.17` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [axios](https://github.com/axios/axios) | `1.7.7` | `1.16.0` |\n| [bn.js](https://github.com/indutny/bn.js) | `5.2.1` | `5.2.3` |\n| [bn.js](https://github.com/indutny/bn.js) | `4.12.0` | `4.12.3` |\n| [body-parser](https://github.com/expressjs/body-parser) | `2.2.0` | `2.2.2` |\n| [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) | `5.2.5` | `5.7.2` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.1` | `3.4.2` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [handlebars](https://github.com/handlebars-lang/handlebars.js) | `4.7.8` | `4.7.9` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [multer](https://github.com/expressjs/multer) | `2.0.2` | `2.1.1` |\n| [path-to-regexp](https://github.com/pillarjs/path-to-regexp) | `8.2.0` | `8.4.2` |\n| [tar](https://github.com/isaacs/node-tar) | `6.2.1` | `7.5.11` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.12.0` | `13.15.35` |\n\nBumps the npm_and_yarn group with 1 update in the /services/server directory: [uuid](https://github.com/uuidjs/uuid).\n\nUpdates `uuid` from 10.0.0 to 14.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/releases\"\u003euuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev14.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003edc4ddb8\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eexpect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003ef2c235f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003effa3138\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v13.0.1\"\u003e13.0.1\u003c/a\u003e (2026-04-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/9d27ddf7046ce496ef39569ff84d948eeff9cb2a\"\u003e9d27ddf\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev13.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v12.0.1\"\u003e12.0.1\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport fix for GHSA-w5hq-g745-h8pq (\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d61d6ac1f782cf6b1dd8661c60f11722cd49a0d\"\u003e3d61d6a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev12.0.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md\"\u003euuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v13.0.0...v14.0.0\"\u003e14.0.0\u003c/a\u003e (2026-04-19)\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/uuidjs/uuid/security/advisories/GHSA-w5hq-g745-h8pq\"\u003eGHSA-w5hq-g745-h8pq\u003c/a\u003e: \u003ccode\u003ev3()\u003c/code\u003e, \u003ccode\u003ev5()\u003c/code\u003e, and \u003ccode\u003ev6()\u003c/code\u003e did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid \u003ccode\u003eoffset\u003c/code\u003e was provided. A \u003ccode\u003eRangeError\u003c/code\u003e is now thrown if \u003ccode\u003eoffset \u0026lt; 0\u003c/code\u003e or \u003ccode\u003eoffset + 16 \u0026gt; buf.length\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecrypto\u003c/code\u003e is now expected to be globally defined (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v12.0.0...v13.0.0\"\u003e13.0.0\u003c/a\u003e (2025-09-08)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emake browser exports the default (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/901\"\u003e#901\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/bce9d72a3ae5b9a3dcd8eb21ef6d1820288a427a\"\u003ebce9d72\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.1.0...v12.0.0\"\u003e12.0.0\u003c/a\u003e (2025-09-05)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd node@24 to ci matrix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/879\"\u003e#879\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/42b6178aa21a593257f0a72abacd220f0b7b8a92\"\u003e42b6178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edrop node@16 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/883\"\u003e#883\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f38cf10366ab074f9328ae2021eea04d5f2e530\"\u003e0f38cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove CommonJS support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/886\"\u003e#886\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/ae786e27265f50bcf7cead196c29f1869297c42f\"\u003eae786e2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate to typescript@5.2 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/887\"\u003e#887\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/c7ee40598ed78584d81ab78dffded9fe5ff20b01\"\u003ec7ee405\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eimprove v4() performance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/894\"\u003e#894\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/5fd974c12718c8848035650b69b8948f12ace197\"\u003e5fd974c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestore node: prefix (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/889\"\u003e#889\u003c/a\u003e) (\u003ca href=\"https://github.com/uuidjs/uuid/commit/e1f42a354593093ba0479f0b4047dae82d28c507\"\u003ee1f42a3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/uuidjs/uuid/compare/v11.0.5...v11.1.0\"\u003e11.1.0\u003c/a\u003e (2025-02-19)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/7c1ea087a8149b57380fc8bb7f68c3a215cb6e4b\"\u003e\u003ccode\u003e7c1ea08\u003c/code\u003e\u003c/a\u003e chore(main): release 14.0.0 (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/3d2c5b0342f0fcb52a5ac681c3d47c13e7444b34\"\u003e\u003ccode\u003e3d2c5b0\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/f2c235f93059325fa43e1106e624b5291bb523c4\"\u003e\u003ccode\u003ef2c235f\u003c/code\u003e\u003c/a\u003e fix!: expect \u003ccode\u003ecrypto\u003c/code\u003e to be global everywhere (requires node@20+) (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/935\"\u003e#935\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/529ef0899f5dd503d2ee90d690585d63d78bc212\"\u003e\u003ccode\u003e529ef08\u003c/code\u003e\u003c/a\u003e chore: upgrade TypeScript and fixup types (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/927\"\u003e#927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/086fd7976f11433edf9ac80be876b3ad243fe087\"\u003e\u003ccode\u003e086fd79\u003c/code\u003e\u003c/a\u003e chore: update dependencies (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/933\"\u003e#933\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/dc4ddb87272ed2843faccd130bcc41d492688bd3\"\u003e\u003ccode\u003edc4ddb8\u003c/code\u003e\u003c/a\u003e feat!: drop node@18 support (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/934\"\u003e#934\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0f1f9c9c9cedbae5a1d363d5406c5dfbabe81404\"\u003e\u003ccode\u003e0f1f9c9\u003c/code\u003e\u003c/a\u003e chore: switch to Biome for parsing and linting (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/932\"\u003e#932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/e2879e64bf125add903c1eff6e0860542c605013\"\u003e\u003ccode\u003ee2879e6\u003c/code\u003e\u003c/a\u003e chore: use maintained version of npm-run-all (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/930\"\u003e#930\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/ffa31383e8e4e1f0b4e22e504561272041b8738c\"\u003e\u003ccode\u003effa3138\u003c/code\u003e\u003c/a\u003e fix: Use GITHUB_TOKEN for release-please and enable npm provenance (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/925\"\u003e#925\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uuidjs/uuid/commit/0423d49df2dc8efc300c804731d25f4d7e0fccc4\"\u003e\u003ccode\u003e0423d49\u003c/code\u003e\u003c/a\u003e docs: remove obsolete v1 option notes (\u003ca href=\"https://redirect.github.com/uuidjs/uuid/issues/915\"\u003e#915\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/uuidjs/uuid/compare/v10.0.0...v14.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for uuid since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/184bc32745d9d33b2322949b9f3cb5f7609bf5ec\"\u003e\u003ccode\u003e184bc32\u003c/code\u003e\u003c/a\u003e 6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/fea46afd1a76b12ff89493f6dc1bc46730c6d379\"\u003e\u003ccode\u003efea46af\u003c/code\u003e\u003c/a\u003e test/fix prototype pollution via $data ref with format keyword (\u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/2606\"\u003e#2606\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/10c05fcf3699b1a29ef5e611c011af3d3c97e6e3\"\u003e\u003ccode\u003e10c05fc\u003c/code\u003e\u003c/a\u003e 1.1.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/1afa1b22ead12f6a7a02f25bf0f7d64c2439b007\"\u003e\u003ccode\u003e1afa1b2\u003c/code\u003e\u003c/a\u003e Add opt-in { max } mitigation to v1 legacy line (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/103\"\u003e#103\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/2fbb6a2aa0f984bb2fb5f60252ca6cba3e1368ec\"\u003e\u003ccode\u003e2fbb6a2\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Backport fix for GHSA-7h2j-956f-4vf2 to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/101\"\u003e#101\u003c/a\u003e)\u0026quot; (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/102\"\u003e#102\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/0d7652e3093d3273151729812f9b0b79a17ecba6\"\u003e\u003ccode\u003e0d7652e\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-7h2j-956f-4vf2 to v1 (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/101\"\u003e#101\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/6c353caf23beb9644f858eb3fe38d43a68b82898\"\u003e\u003ccode\u003e6c353ca\u003c/code\u003e\u003c/a\u003e 1.1.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2\"\u003e\u003ccode\u003e7fd684f\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-f886-m6hf-6m8v (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/95\"\u003e#95\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `picomatch` from 2.3.1 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/releases\"\u003epicomatch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.2\u003c/h2\u003e\n\u003cp\u003eThis is a security release fixing several security relevant issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: exception when glob pattern contains constructor by \u003ca href=\"https://github.com/Jason3S\"\u003e\u003ccode\u003e@​Jason3S\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/micromatch/picomatch/pull/144\"\u003emicromatch/picomatch#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj\"\u003eCVE-2026-33671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p\"\u003eCVE-2026-33672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ehttps://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md\"\u003epicomatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eAll notable changes to this project will be documented in this file.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e4.0.0 (2024-02-07)\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad text values in parse \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/126\"\u003e#126\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/connor4312\"\u003e\u003ccode\u003e@​connor4312\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove process global to work outside of node \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/129\"\u003e#129\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/styfle\"\u003e\u003ccode\u003e@​styfle\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sideEffects to package.json \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/128\"\u003e#128\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/frandiox\"\u003e\u003ccode\u003e@​frandiox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003eos\u003c/code\u003e, make compatible browser environment. See \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/124\"\u003e#124\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/gwsbhqt\"\u003e\u003ccode\u003e@​gwsbhqt\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.1\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/81cba8d4b767cab3cb29d26eb4f691eed75b73b2\"\u003e\u003ccode\u003e81cba8d\u003c/code\u003e\u003c/a\u003e Publish 2.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/fc1f6b69006e9435caf8fb40d8aff378bc0b7bce\"\u003e\u003ccode\u003efc1f6b6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/eec17aee5428a7249e9ca5adbb8a0d28fa29619b\"\u003e\u003ccode\u003eeec17ae\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/78f8ca4362d9e66cadea97b93e292f10096452ed\"\u003e\u003ccode\u003e78f8ca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/156\"\u003e#156\u003c/a\u003e from micromatch/backport-144\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/3f4f10eaa65bf3a52e8f2999674cd27e11fa3c9b\"\u003e\u003ccode\u003e3f4f10e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/144\"\u003e#144\u003c/a\u003e from Jason3S/jdent-object-properties\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cookie` from 0.4.2 to 0.7.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jshttp/cookie/releases\"\u003ecookie's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.2\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix object assignment of \u003ccode\u003ehasOwnProperty\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/177\"\u003e#177\u003c/a\u003e)  bc38ffd\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAllow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eAlthough not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eAdd fast path for \u003ccode\u003eserialize\u003c/code\u003e without options, use \u003ccode\u003eobj.hasOwnProperty\u003c/code\u003e when parsing (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: parse cookies ~10% faster (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e by \u003ca href=\"https://github.com/kurtextrem\"\u003e\u003ccode\u003e@​kurtextrem\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/170\"\u003e#170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: narrow the validation of cookies to match RFC6265 (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/167\"\u003e#167\u003c/a\u003e by \u003ca href=\"https://github.com/bewinsnw\"\u003e\u003ccode\u003e@​bewinsnw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: add \u003ccode\u003emain\u003c/code\u003e to \u003ccode\u003epackage.json\u003c/code\u003e for rspack (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/166\"\u003e#166\u003c/a\u003e by \u003ca href=\"https://github.com/proudparrot2\"\u003e\u003ccode\u003e@​proudparrot2\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\"\u003ehttps://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003epartitioned\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003epriority\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eexpires\u003c/code\u003e option to reject invalid dates\u003c/li\u003e\n\u003cli\u003epref: improve default decode speed\u003c/li\u003e\n\u003cli\u003epref: remove slow string split in parse\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/d19eaa1a2bb9ca43ac0951edd852ba4e88e410e0\"\u003e\u003ccode\u003ed19eaa1\u003c/code\u003e\u003c/a\u003e 0.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/bc38ffd0eae716b199236dda061d0bdc74192dd3\"\u003e\u003ccode\u003ebc38ffd\u003c/code\u003e\u003c/a\u003e Fix object assignment of \u003ccode\u003ehasOwnProperty\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/177\"\u003e#177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/cf4658f492c5bd96aeaf5693c3500f8495031014\"\u003e\u003ccode\u003ecf4658f\u003c/code\u003e\u003c/a\u003e 0.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/6a8b8f5a49af7897b98ebfb29a1c4955afa3d33e\"\u003e\u003ccode\u003e6a8b8f5\u003c/code\u003e\u003c/a\u003e Allow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/58015c0b93de0b63db245cfdc5a108e511a81ad0\"\u003e\u003ccode\u003e58015c0\u003c/code\u003e\u003c/a\u003e Remove more code and perf wins (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/ab057d6c06b94a7b1e3358e69a685ae49c97b627\"\u003e\u003ccode\u003eab057d6\u003c/code\u003e\u003c/a\u003e 0.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/5f02ca87688481dbcf155e49ca8b61732f30e542\"\u003e\u003ccode\u003e5f02ca8\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/a5d591ce8447dd63821779724f96ad3c774c8579\"\u003e\u003ccode\u003ea5d591c\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/51968f94b5e820adeceef505539fa193ffe2d105\"\u003e\u003ccode\u003e51968f9\u003c/code\u003e\u003c/a\u003e Skip isNaN\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/9e7ca51ade4b325307eedd6b4dec190983e9e2cc\"\u003e\u003ccode\u003e9e7ca51\u003c/code\u003e\u003c/a\u003e perf(parse): cache length, return early (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jshttp/cookie/compare/v0.4.2...v0.7.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~blakeembrey\"\u003eblakeembrey\u003c/a\u003e, a new releaser for cookie since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 4.1.4 to 4.4.17\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/releases\"\u003e@​smithy/config-resolver's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.4.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [449ba5a]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.4.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.4.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [5a18069]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [cb76b1f]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [131fce4]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [52b4789]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [b4a8b6b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.4.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.14.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.14\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.14\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.4.15\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [8196133]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [2490c8c]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e@​smithy/config-resolver's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.4.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [449ba5a]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.4.2\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [5a18069]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [cb76b1f]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [131fce4]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [52b4789]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [b4a8b6b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.4.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.14.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.14\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.14\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.15\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [8196133]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [2490c8c]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.14\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cffd868]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.14.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.3.13\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-endpoints\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.3.4\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.2.13\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eb1f0dba: fix(middleware-endpoint): update type of useDualStackEndpoint/useFipsEndpoint input config\nfix(config-resolver): add alternate values for NODE_USE_DUALSTACK_ENDPOINT_CONFIG_OPTIONS and NODE_USE_FIPS_ENDPOINT_CONFIG_OPTIONS\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.4.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/c077b47b045f90382003cab83b3bec14cbc1ec29\"\u003e\u003ccode\u003ec077b47\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/a5194303d19d5b5e4a7e3f08374768f3a507f800\"\u003e\u003ccode\u003ea519430\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/77e352f51cba8f14e98b55fe6527457776649f75\"\u003e\u003ccode\u003e77e352f\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/c01e9dff4efd3c6ac26f5701ed0b8b50d10c4e62\"\u003e\u003ccode\u003ec01e9df\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/a35b0ac4fb62f43764585a0916d87ef8c9a11dd5\"\u003e\u003ccode\u003ea35b0ac\u003c/code\u003e\u003c/a\u003e chore: use dist-es for rollup build of dist-cjs (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1942\"\u003e#1942\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/ab5df4e3687673c5c4e0df253756cb82bc685917\"\u003e\u003ccode\u003eab5df4e\u003c/code\u003e\u003c/a\u003e docs: update readmes for internal packages (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1932\"\u003e#1932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/9328be266ad3326901032b94df2eab0482be2769\"\u003e\u003ccode\u003e9328be2\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/b1f0dbaa7fde234daf12a539676f2191afc29ae3\"\u003e\u003ccode\u003eb1f0dba\u003c/code\u003e\u003c/a\u003e fix(config-resolver): add new config selectors (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1927\"\u003e#1927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/e3a0f6fa81e1049dd73dbd0331cb26caa059cd78\"\u003e\u003ccode\u003ee3a0f6f\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/4b5602d4fa925f83ef2f814ee42404daccdc686d\"\u003e\u003ccode\u003e4b5602d\u003c/code\u003e\u003c/a\u003e fix(config-resolver): update default value to undefined for dualstack/FIPS co...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@4.4.17/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.7.7 to 1.16.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.0 — May 2, 2026\u003c/h2\u003e\n\u003cp\u003eThis release adds support for the QUERY HTTP method and a new \u003ccode\u003eECONNREFUSED\u003c/code\u003e error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.\u003c/p\u003e\n\u003ch2\u003e⚠️ Notable Changes\u003c/h2\u003e\n\u003cp\u003eA handful of fixes in this release are either security-adjacent or change observable behaviour. Please review before upgrading:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFetch adapter now enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e and \u003ccode\u003emaxContentLength\u003c/code\u003e.\u003c/strong\u003e These limits were silently ignored on the fetch adapter prior to 1.16.0 — anyone relying on them as a safety net (DoS protection, accidental large uploads) had no protection. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eProxy requests now preserve user-supplied \u003ccode\u003eHost\u003c/code\u003e headers.\u003c/strong\u003e Previously, the proxy path could overwrite a custom \u003ccode\u003eHost\u003c/code\u003e. Virtual-host-style routing through a proxy will now behave correctly. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBasic auth credentials embedded in URLs are now URL-decoded.\u003c/strong\u003e If you have percent-encoded credentials in a URL (e.g. \u003ccode\u003ehttps://user:p%40ss@host\u003c/code\u003e), the decoded value is what now goes on the wire. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eparseProtocol\u003c/code\u003e now strictly requires a colon in the protocol separator.\u003c/strong\u003e Strings that loosely parsed as protocols before may no longer match. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDeprecated \u003ccode\u003eunescape()\u003c/code\u003e replaced with modern UTF-8 encoding.\u003c/strong\u003e Non-ASCII URL handling is now spec-correct; consumers depending on legacy \u003ccode\u003eunescape()\u003c/code\u003e quirks may see different output bytes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003etransformRequest\u003c/code\u003e input typing change was reverted.\u003c/strong\u003e The typing change introduced in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e was reverted in \u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e after follow-up review — net behavior is unchanged from 1.15.2. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eQUERY HTTP Method:\u003c/strong\u003e Added support for the QUERY HTTP method across adapters and type definitions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10802\"\u003e#10802\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eECONNREFUSED Error Constant:\u003c/strong\u003e Exposed \u003ccode\u003eECONNREFUSED\u003c/code\u003e as a constant on \u003ccode\u003eAxiosError\u003c/code\u003e so callers can match connection-refused failures without comparing string literals (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/6485\"\u003e#6485\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eEncode Helper Export:\u003c/strong\u003e Exported the internal \u003ccode\u003eencode\u003c/code\u003e helper from \u003ccode\u003ebuildURL\u003c/code\u003e so userland param serializers can reuse the same encoding logic that axios uses internally. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6897\"\u003e#6897\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Redirects \u0026amp; Headers:\u003c/strong\u003e Cleared stale headers when a redirect targets a no-proxy host, fixed the redirect listener chain so listeners no longer stack across hops, restored the missing \u003ccode\u003erequestDetails\u003c/code\u003e argument on \u003ccode\u003ebeforeRedirect\u003c/code\u003e, preserved user-supplied \u003ccode\u003eHost\u003c/code\u003e headers when forwarding through a proxy, and properly URL-decoded basic auth credentials. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10794\"\u003e#10794\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10800\"\u003e#10800\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6241\"\u003e#6241\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10822\"\u003e#10822\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHTTP Adapter — Streams \u0026amp; Timeouts:\u003c/strong\u003e Preserved the partial response object on \u003ccode\u003eAxiosError\u003c/code\u003e when a stream is aborted after headers arrive, honoured the \u003ccode\u003etimeout\u003c/code\u003e option during the connect phase when redirects are disabled, and resolved an unsettled-promise hang when an aborted request was combined with compression and \u003ccode\u003emaxRedirects: 0\u003c/code\u003e. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10708\"\u003e#10708\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7149\"\u003e#7149\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFetch Adapter:\u003c/strong\u003e Enforced \u003ccode\u003emaxBodyLength\u003c/code\u003e / \u003ccode\u003emaxContentLength\u003c/code\u003e in the fetch adapter, set the \u003ccode\u003eUser-Agent\u003c/code\u003e header to match the HTTP adapter, preserved the original abort reason instead of replacing it with a generic error, and deferred global access so importing the module no longer throws a \u003ccode\u003eTypeError\u003c/code\u003e in restricted environments. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10795\"\u003e#10795\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10772\"\u003e#10772\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10806\"\u003e#10806\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eXHR Adapter:\u003c/strong\u003e Unsubscribed the \u003ccode\u003ecancelToken\u003c/code\u003e and \u003ccode\u003eAbortSignal\u003c/code\u003e listeners on the error, timeout, and abort code paths to prevent leaked subscriptions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e Attached the parsed response to \u003ccode\u003eAxiosError\u003c/code\u003e when \u003ccode\u003eJSON.parse\u003c/code\u003e fails inside \u003ccode\u003edispatchRequest\u003c/code\u003e, prevented \u003ccode\u003esettle\u003c/code\u003e from emitting \u003ccode\u003eundefined\u003c/code\u003e error codes, and tightened the \u003ccode\u003eparseProtocol\u003c/code\u003e regex to require a colon in the protocol separator. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10724\"\u003e#10724\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTypes \u0026amp; Exports:\u003c/strong\u003e Aligned the CommonJS \u003ccode\u003eCancelToken\u003c/code\u003e typings with the ESM build, fixed a compiler error caused by \u003ccode\u003eRawAxiosHeaders\u003c/code\u003e, and re-exported \u003ccode\u003ecreate\u003c/code\u003e from the package index. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7414\"\u003e#7414\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6389\"\u003e#6389\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/6460\"\u003e#6460\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUTF-8 Encoding:\u003c/strong\u003e Replaced the deprecated \u003ccode\u003eunescape()\u003c/code\u003e call with a modern UTF-8 encoding implementation. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7378\"\u003e#7378\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMisc Cleanup:\u003c/strong\u003e Resolved a batch of small inconsistencies and gadget-level issues across the codebase. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRefactor — ES6 Modernisation:\u003c/strong\u003e Modernised the \u003ccode\u003eutils\u003c/code\u003e module and XHR adapter to use ES6 features, and tidied the multipart boundary error message. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTests:\u003c/strong\u003e Hardened the HTTP test server lifecycle to fix flaky \u003ccode\u003eFormData\u003c/code\u003e EPIPE failures, fixed Win32 platform support for the pipe tests, and corrected an incorrect test assumption. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10820\"\u003e#10820\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10791\"\u003e#10791\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10796\"\u003e#10796\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocs:\u003c/strong\u003e Documented \u003ccode\u003eparamsSerializer.encode\u003c/code\u003e for strict RFC 3986 query encoding, updated the \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions and configuration docs for ES2023, added timeout guidance to the README's first async example, and expanded notes around the recent type changes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10821\"\u003e#10821\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10782\"\u003e#10782\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10759\"\u003e#10759\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10804\"\u003e#10804\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReverted:\u003c/strong\u003e Reverted the \u003ccode\u003etransformRequest\u003c/code\u003e input typing change from \u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e after follow-up review. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10745\"\u003e#10745\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10810\"\u003e#10810\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Bumped \u003ccode\u003eactions/setup-node\u003c/code\u003e, the \u003ccode\u003egithub-actions\u003c/code\u003e group, and \u003ccode\u003epostcss\u003c/code\u003e (in \u003ccode\u003e/docs\u003c/code\u003e) to their latest versions. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10785\"\u003e#10785\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10813\"\u003e#10813\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10814\"\u003e#10814\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRelease:\u003c/strong\u003e Updated changelog and packages, and prepared the 1.16.0 release. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10790\"\u003e#10790\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors. Thank you for helping improve axios:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/singhankit001\"\u003e\u003ccode\u003e@​singhankit001\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10588\"\u003e#10588\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/7419\"\u003e#7419\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/iruizsalinas\"\u003e\u003ccode\u003e@​iruizsalinas\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10787\"\u003e#10787\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/MarcosNocetti\"\u003e\u003ccode\u003e@​MarcosNocetti\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10680\"\u003e#10680\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/deepview-autofix\"\u003e\u003ccode\u003e@​deepview-autofix\u003c/code\u003e\u003c/a\u003e\u003c/strong\u003e (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10729\"\u003e#10729\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev1.15.2 - April 21, 2026\u003c/h2\u003e\n\u003cp\u003eThis release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePrototype Pollution Hardening (HTTP Adapter):\u003c/strong\u003e Hardened the Node HTTP adapter and \u003ccode\u003eresolveConfig\u003c/code\u003e/\u003ccode\u003emergeConfig\u003c/code\u003e/validator paths to read only own properties and use null-prototype config objects, preventing polluted \u003ccode\u003eauth\u003c/code\u003e, \u003ccode\u003ebaseURL\u003c/code\u003e, \u003ccode\u003esocketPath\u003c/code\u003e, \u003ccode\u003ebeforeRedirect\u003c/code\u003e, and \u003ccode\u003einsecureHTTPParser\u003c/code\u003e from influencing requests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10779\"\u003e#10779\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSSRF via \u003ccode\u003esocketPath\u003c/code\u003e:\u003c/strong\u003e Rejects non-string \u003ccode\u003esocketPath\u003c/code\u003e values and adds an opt-in \u003ccode\u003eallowedSocketPaths\u003c/code\u003e config option to restrict permitted Unix domain socket paths, returning \u003ccode\u003eAxiosError\u003c/code\u003e \u003ccode\u003eERR_BAD_OPTION_VALUE\u003c/code\u003e on mismatch. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eSupply-chain Hardening:\u003c/strong\u003e Added \u003ccode\u003e.npmrc\u003c/code\u003e with \u003ccode\u003eignore-scripts=true\u003c/code\u003e, lockfile lint CI, non-blocking reproducible build diff, scoped CODEOWNERS, expanded \u003ccode\u003eSECURITY.md\u003c/code\u003e/\u003ccode\u003eTHREATMODEL.md\u003c/code\u003e with provenance verification (\u003ccode\u003enpm audit signatures\u003c/code\u003e), 60-day resolution policy, and maintainer incident-response runbook. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10776\"\u003e#10776\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eallowedSocketPaths\u003c/code\u003e Config Option:\u003c/strong\u003e New request config option (and TypeScript types) to allowlist Unix domain socket paths used by the Node http adapter; backwards compatible when unset. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10777\"\u003e#10777\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eKeep-alive Socket Memory Leak:\u003c/strong\u003e Installs a single per-socket \u003ccode\u003eerror\u003c/code\u003e listener tracking the active request via \u003ccode\u003ekAxiosSocketListener\u003c/code\u003e/\u003ccode\u003ekAxiosCurrentReq\u003c/code\u003e, eliminating per-request listener accumulation, \u003ccode\u003eMaxListenersExceededWarning\u003c/code\u003e, and linear heap growth under concurrent or long-running keep-alive workloads (fixes \u003ca href=\"https://redirect.github.com/axios/axios/issues/10780\"\u003e#10780\u003c/a\u003e). (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10788\"\u003e#10788\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eChangelog:\u003c/strong\u003e Updated \u003ccode\u003eCHANGELOG.md\u003c/code\u003e with v1.15.1 release notes. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10781\"\u003e#10781\u003c/a\u003e\u003c/strong\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.15.1...v1.15.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003chr /\u003e\n\u003ch2\u003ev1.15.1 - April 19, 2026\u003c/h2\u003e\n\u003cp\u003eThis release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.\u003c/p\u003e\n\u003ch2\u003e🔒 Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eHeader Injection Hardening:\u003c/strong\u003e Tightened validation and sanitisation across request header construction to close the header-injection attack surface. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10749\"\u003e#10749\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eCRLF Stripping in Multipart Headers:\u003c/strong\u003e Correctly strips CR/LF from multipart header values to prevent injection via field names and filenames. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10758\"\u003e#10758\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ePrototype Pollution / Auth Bypass:\u003c/strong\u003e Replaced unsafe \u003ccode\u003ein\u003c/code\u003e checks with \u003ccode\u003ehasOwnProperty\u003c/code\u003e to prevent authentication bypass via prototype pollution on config objects, with additional regression tests. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10761\"\u003e#10761\u003c/a\u003e\u003c/strong\u003e, \u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10760\"\u003e#10760\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ewithXSRFToken\u003c/code\u003e Truthy Bypass:\u003c/strong\u003e Short-circuits on any truthy non-boolean value, so an ambiguous config no longer silently leaks the XSRF token cross-origin. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10762\"\u003e#10762\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003emaxBodyLength\u003c/code\u003e With Zero Redirects:\u003c/strong\u003e Enforces \u003ccode\u003emaxBodyLength\u003c/code\u003e even when \u003ccode\u003emaxRedirects\u003c/code\u003e is set to \u003ccode\u003e0\u003c/code\u003e, closing a bypass path for oversized request bodies. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10753\"\u003e#10753\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eStreamed Response \u003ccode\u003emaxContentLength\u003c/code\u003e Bypass:\u003c/strong\u003e Applies \u003ccode\u003emaxContentLength\u003c/code\u003e to streamed responses that previously bypassed the cap. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10754\"\u003e#10754\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eFollow-up CVE Completion:\u003c/strong\u003e Completes an earlier incomplete CVE fix to fully close the regression window. (\u003cstrong\u003e\u003ca href=\"https://redirect.github.com/axios/axios/issues/10755\"\u003e#10755\u003c/a\u003e\u003c/strong\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/df53d7dd99b202fb194217abd127ae6a630e70dc\"\u003e\u003ccode\u003edf53d7d\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.16.0 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10834\"\u003e#10834\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9d92bcd32639d1eea5b89f03ae45f248d3bb058e\"\u003e\u003ccode\u003e9d92bcd\u003c/code\u003e\u003c/a\u003e fix: gadgets and smaller issues (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10833\"\u003e#10833\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/5107ee69aee527b19eabaf80000ca65752135435\"\u003e\u003ccode\u003e5107ee6\u003c/code\u003e\u003c/a\u003e fix: prevent undefined error codes in settle (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7276\"\u003e#7276\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/e57349992f230b6b13e80613eb84302560aa5ba8\"\u003e\u003ccode\u003ee573499\u003c/code\u003e\u003c/a\u003e fix(fetch): defer global access in fetch adapter (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7260\"\u003e#7260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ad68e1a484b50086af427f767bbd7d6e3aab7ac3\"\u003e\u003ccode\u003ead68e1a\u003c/code\u003e\u003c/a\u003e fix(http): honor timeout during connect without redirects (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10819\"\u003e#10819\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/2a51828213128691d2e37502b5eb2cf4965a737d\"\u003e\u003ccode\u003e2a51828\u003c/code\u003e\u003c/a\u003e fix(http): decode URL basic auth credentials (\u003ca href=\"https://redirect.github.com/axios/axios/issues/10825\"\u003e#10825\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0e8b6bbb542131bae9940618d84d5286255d4db1\"\u003e\u003ccode\u003e0e8b6bb\u003c/code\u003e\u003c/a\u003e fix(http): preserve user-supplied Host header when forwarding through a proxy...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/79f39e1d041dca87173226d0255f90eaf252564b\"\u003e\u003ccode\u003e79f39e1\u003c/code\u003e\u003c/a\u003e docs: document paramsSerializer.encode for strict RFC 3986 query encoding (\u003ca href=\"https://redirect.github.com/axios/axios/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/0fe3a5fc14829535e1d517c662d448e86c33438e\"\u003e\u003ccode\u003e0fe3a5f\u003c/code\u003e\u003c/a\u003e [Docs/Types] Update \u003ccode\u003eparseReviver\u003c/code\u003e TypeScript definitions for ES2023 and add ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/cd6737fd84bdb7caf2a319d3579573a49f9d238d\"\u003e\u003ccode\u003ecd6737f\u003c/code\u003e\u003c/a\u003e chore: matches the sibling responseStream.on(aborted) handler and added tests...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.7.7...v1.16.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~GitHub%20Actions\"\u003eGitHub Actions\u003c/a\u003e, a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bn.js` from 5.2.1 to 5.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/indutny/bn.js/blob/master/CHANGELOG.md\"\u003ebn.js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.2.3 / 2026-02-19\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.2 / 2025-04-25\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/ea6c072a951493ca99e5cd5f8da3851b90116271\"\u003e\u003ccode\u003eea6c072\u003c/code\u003e\u003c/a\u003e 5.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/33df26b5771e824f303a79ec6407409376baa64b\"\u003e\u003ccode\u003e33df26b\u003c/code\u003e\u003c/a\u003e fix imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/6db7c3818569423b94ebcf2bdff90fcfb9c47f6d\"\u003e\u003ccode\u003e6db7c38\u003c/code\u003e\u003c/a\u003e 5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/c7e1a532566c83fd0297ff7669c227b824928bf4\"\u003e\u003ccode\u003ec7e1a53\u003c/code\u003e\u003c/a\u003e Fix imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/4cc0bfa5195d54876a6b807827e582522c813019\"\u003e\u003ccode\u003e4cc0bfa\u003c/code\u003e\u003c/a\u003e docs: mention the max plain JS number argument value (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/307\"\u003e#307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/5df40f81ea8afb835b909bb7c21e0833cdeb6a30\"\u003e\u003ccode\u003e5df40f8\u003c/code\u003e\u003c/a\u003e Document \u003ccode\u003elength\u003c/code\u003e unit in \u003ccode\u003etoBuffer(...)\u003c/code\u003e input (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/299\"\u003e#299\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/indutny/bn.js/compare/v5.2.1...v5.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bn.js` from 4.12.0 to 4.12.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/indutny/bn.js/blob/master/CHANGELOG.md\"\u003ebn.js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.2.3 / 2026-02-19\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.2 / 2025-04-25\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/ea6c072a951493ca99e5cd5f8da3851b90116271\"\u003e\u003ccode\u003eea6c072\u003c/code\u003e\u003c/a\u003e 5.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/33df26b5771e824f303a79ec6407409376baa64b\"\u003e\u003ccode\u003e33df26b\u003c/code\u003e\u003c/a\u003e fix imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/6db7c3818569423b94ebcf2bdff90fcfb9c47f6d\"\u003e\u003ccode\u003e6db7c38\u003c/code\u003e\u003c/a\u003e 5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/c7e1a532566c83fd0297ff7669c227b824928bf4\"\u003e\u003ccode\u003ec7e1a53\u003c/code\u003e\u003c/a\u003e Fix imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/4cc0bfa5195d54876a6b807827e582522c813019\"\u003e\u003ccode\u003e4cc0bfa\u003c/code\u003e\u003c/a\u003e docs: mention the max plain JS number argument value (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/307\"\u003e#307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/5df40f81ea8afb835b909bb7c21e0833cdeb6a30\"\u003e\u003ccode\u003e5df40f8\u003c/code\u003e\u003c/a\u003e Document \u003ccode\u003elength\u003c/code\u003e unit in \u003ccode\u003etoBuffer(...)\u003c/code\u003e input (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/299\"\u003e#299\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/indutny/bn.js/compare/v5.2.1...v5.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `body-parser` from 2.2.0 to 2.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/body-parser/releases\"\u003ebody-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README links by \u003ca href=\"https://github.com/efekrskl\"\u003e\u003ccode\u003e@​efekrskl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/673\"\u003eexpressjs/body-parser#673\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: release notes for the v1.20.4 release by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/674\"\u003eexpressjs/body-parser#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update URL-encoded parser description to include ISO-8859-1 encoding support by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/679\"\u003eexpressjs/body-parser#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: use standard jsdoc tags everywhere by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/677\"\u003eexpressjs/body-parser#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: qs@^6.14.1 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/689\"\u003eexpressjs/body-parser#689\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(json): simplify strict mode error string construction by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/693\"\u003eexpressjs/body-parser#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 2.2.2 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/691\"\u003eexpressjs/body-parser#691\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/efekrskl\"\u003e\u003ccode\u003e@​efekrskl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/673\"\u003eexpressjs/body-parser#673\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/body-parser/compare/v2.2.1...v2.2.2\"\u003ehttps://github.com/expressjs/body-parser/compare/v2.2.1...v2.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.2.1\u003c/h2\u003e\n\u003ch2\u003eImportant: Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-13466\"\u003eCVE-2025-13466\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/body-parser/security/advisories/GHSA-wqch-xfxh-vrr4\"\u003eGHSA-wqch-xfxh-vrr4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: add dependabot by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/593\"\u003eexpressjs/body-parser#593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: use full SHAs for github action versions by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/594\"\u003eexpressjs/body-parser#594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: type-is@^2.0.1 by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/599\"\u003eexpressjs/body-parser#599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4.3.0 to 4.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/609\"\u003eexpressjs/body-parser#609\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.13 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/610\"\u003eexpressjs/body-parser#610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump eslint-plugin-promise from 6.1.1 to 6.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/611\"\u003eexpressjs/body-parser#611\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump eslint-plugin-import from 2.27.5 to 2.31.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/613\"\u003eexpressjs/body-parser#613\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump eslint-plugin-markdown from 3.0.0 to 3.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/612\"\u003eexpressjs/body-parser#612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add codeql github workflows scanning by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressj...\n\n_Description has been truncated_","html_url":"https://github.com/SherfeyInv/sourcify/pull/62","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/SherfeyInv%2Fsourcify/issues/62","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/62/packages"}},{"old_version":"3.5.2","new_version":"3.5.4","update_type":"patch","path":null,"pr_created_at":"2026-04-15T23:09:04.000Z","version_change":"3.5.2 → 3.5.4","issue":{"uuid":"4272249184","node_id":"PR_kwDOOPPMvM7SzhbI","number":22,"state":"closed","title":"Bump the npm_and_yarn group across 13 directories with 23 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-16T23:51:01.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-15T23:09:04.000Z","updated_at":"2026-04-16T23:51:02.000Z","time_to_close":88917,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":23,"packages":[{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"formidable","old_version":"3.5.2","new_version":"3.5.4","repository_url":"https://github.com/node-formidable/formidable"},{"name":"glob","old_version":"10.4.5","new_version":"13.0.6","repository_url":"https://github.com/isaacs/node-glob"},{"name":"minimatch","old_version":"5.1.6","new_version":"5.1.9","repository_url":"https://github.com/isaacs/minimatch"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"minimatch","old_version":"9.0.5","new_version":"9.0.9","repository_url":"https://github.com/isaacs/minimatch"},{"name":"form-data","old_version":"4.0.2","new_version":"4.0.5","repository_url":"https://github.com/form-data/form-data"},{"name":"@saltcorn/data","old_version":"1.1.4-alpha.3","new_version":"1.4.5","repository_url":"https://github.com/saltcorn/saltcorn"},{"name":"pbkdf2","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/browserify/pbkdf2"},{"name":"serialize-javascript","old_version":"6.0.2","new_version":"removed","repository_url":"https://github.com/yahoo/serialize-javascript"},{"name":"@saltcorn/server","old_version":"1.1.4-alpha.3","new_version":"1.5.5","repository_url":"https://github.com/saltcorn/saltcorn"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 1 update in the /packages/filemanager directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 1 update in the /packages/plugins-loader directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-admin-models directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-base-plugin directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-builder directory: [lodash](https://github.com/lodash/lodash).\nBumps the npm_and_yarn group with 10 updates in the /packages/saltcorn-cli directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.2` | `3.5.4` |\n| [glob](https://github.com/isaacs/node-glob) | `10.4.5` | `13.0.6` |\n| [minimatch](https://github.com/isaacs/minimatch) | `5.1.6` | `5.1.9` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `9.0.5` | `9.0.9` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.2` | `4.0.5` |\n| [@saltcorn/data](https://github.com/saltcorn/saltcorn) | `1.1.4-alpha.3` | `1.4.5` |\n| [pbkdf2](https://github.com/browserify/pbkdf2) | `3.1.2` | `3.1.5` |\n| [serialize-javascript](https://github.com/yahoo/serialize-javascript) | `6.0.2` | `removed` |\n| [@saltcorn/server](https://github.com/saltcorn/saltcorn) | `1.1.4-alpha.3` | `1.5.5` |\n\nBumps the npm_and_yarn group with 3 updates in the /packages/saltcorn-data directory: [webpack](https://github.com/webpack/webpack), [axios](https://github.com/axios/axios) and [nodemailer](https://github.com/nodemailer/nodemailer).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-markup directory: [webpack](https://github.com/webpack/webpack).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-mobile-app directory: [webpack](https://github.com/webpack/webpack).\nBumps the npm_and_yarn group with 3 updates in the /packages/saltcorn-mobile-builder directory: [webpack](https://github.com/webpack/webpack), [@saltcorn/data](https://github.com/saltcorn/saltcorn) and [@saltcorn/server](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 2 updates in the /packages/saltcorn-random-tests directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn) and [@saltcorn/server](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-sbadmin2 directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 3 updates in the /packages/server directory: [underscore](https://github.com/jashkenas/underscore), [multer](https://github.com/expressjs/multer) and [@saltcorn/data](https://github.com/saltcorn/saltcorn).\n\nUpdates `svelte` from 4.2.20 to 5.55.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/releases\"\u003esvelte's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esvelte@5.55.4\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: never mark a child effect root as inert (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18111\"\u003e#18111\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: reset context after waiting on blockers of \u003ccode\u003e@const\u003c/code\u003e expressions (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18100\"\u003e#18100\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: keep flushing new eager effects (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18102\"\u003e#18102\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.55.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: ensure proper HMR updates for dynamic components (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18079\"\u003e#18079\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly calculate \u003ccode\u003e@const\u003c/code\u003e blockers (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18039\"\u003e#18039\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: freeze deriveds once their containing effects are destroyed (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17921\"\u003e#17921\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: defer error boundary rendering in forks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18076\"\u003e#18076\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: avoid false positives for reactivity loss warning (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18088\"\u003e#18088\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.55.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: invalidate \u003ccode\u003e@const\u003c/code\u003e tags based on visible references in legacy mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18041\"\u003e#18041\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle parens in template expressions more robustly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18075\"\u003e#18075\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: disallow \u003ccode\u003e--\u003c/code\u003e in \u003ccode\u003eidPrefix\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18038\"\u003e#18038\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correct types for \u003ccode\u003eontoggle\u003c/code\u003e on \u003ccode\u003e\u0026lt;details\u0026gt;\u003c/code\u003e elements (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18063\"\u003e#18063\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't override \u003ccode\u003e$destroy/set/on\u003c/code\u003e instance methods in dev mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18034\"\u003e#18034\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: unskip branches of earlier batches after commit (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18048\"\u003e#18048\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: never set derived.v inside fork (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18037\"\u003e#18037\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: skip rebase logic in non-async mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18040\"\u003e#18040\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't reset status of uninitialized deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18054\"\u003e#18054\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.55.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly handle bindings on the server (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18009\"\u003e#18009\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent hydration error on async \u003ccode\u003e{@html ...}\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17999\"\u003e#17999\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md\"\u003esvelte's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.55.4\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: never mark a child effect root as inert (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18111\"\u003e#18111\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: reset context after waiting on blockers of \u003ccode\u003e@const\u003c/code\u003e expressions (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18100\"\u003e#18100\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: keep flushing new eager effects (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18102\"\u003e#18102\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.55.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: ensure proper HMR updates for dynamic components (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18079\"\u003e#18079\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly calculate \u003ccode\u003e@const\u003c/code\u003e blockers (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18039\"\u003e#18039\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: freeze deriveds once their containing effects are destroyed (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17921\"\u003e#17921\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: defer error boundary rendering in forks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18076\"\u003e#18076\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: avoid false positives for reactivity loss warning (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18088\"\u003e#18088\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.55.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: invalidate \u003ccode\u003e@const\u003c/code\u003e tags based on visible references in legacy mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18041\"\u003e#18041\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle parens in template expressions more robustly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18075\"\u003e#18075\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: disallow \u003ccode\u003e--\u003c/code\u003e in \u003ccode\u003eidPrefix\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18038\"\u003e#18038\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correct types for \u003ccode\u003eontoggle\u003c/code\u003e on \u003ccode\u003e\u0026lt;details\u0026gt;\u003c/code\u003e elements (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18063\"\u003e#18063\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't override \u003ccode\u003e$destroy/set/on\u003c/code\u003e instance methods in dev mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18034\"\u003e#18034\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: unskip branches of earlier batches after commit (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18048\"\u003e#18048\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: never set derived.v inside fork (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18037\"\u003e#18037\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: skip rebase logic in non-async mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18040\"\u003e#18040\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't reset status of uninitialized deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18054\"\u003e#18054\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.55.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/7fddfbdbbde8813ee107d56f70f5ea6c3d3abbc3\"\u003e\u003ccode\u003e7fddfbd\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18105\"\u003e#18105\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/671fc2ea11b56f050f37f7e03564fb070bc8abea\"\u003e\u003ccode\u003e671fc2e\u003c/code\u003e\u003c/a\u003e fix: never mark a child effect root as inert (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18111\"\u003e#18111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0ed8c282f96960f52eaf077ffbe6e53c181b3774\"\u003e\u003ccode\u003e0ed8c28\u003c/code\u003e\u003c/a\u003e fix: reset context after waiting on blockers of \u003ccode\u003e@const\u003c/code\u003e expressions (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18100\"\u003e#18100\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/273f1a85a4dbe2937f2d97afa2511e828eb8ebba\"\u003e\u003ccode\u003e273f1a8\u003c/code\u003e\u003c/a\u003e fix: keep flushing new eager effects (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18102\"\u003e#18102\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/4a50e8ea3b7db1d8cd752b825032e4ce2878524b\"\u003e\u003ccode\u003e4a50e8e\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18085\"\u003e#18085\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/15588f5fbfe736f65e189e56047ee08678f5509f\"\u003e\u003ccode\u003e15588f5\u003c/code\u003e\u003c/a\u003e fix: avoid false positives for reactivity loss warning (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18088\"\u003e#18088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0e9e76f29262b5f64ac7a5d4db37ec83c9181634\"\u003e\u003ccode\u003e0e9e76f\u003c/code\u003e\u003c/a\u003e fix: freeze deriveds once their containing effects are destroyed (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17921\"\u003e#17921\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/3937ec03bdaae8d9c097f4f015560ee4b9e32cf3\"\u003e\u003ccode\u003e3937ec0\u003c/code\u003e\u003c/a\u003e fix: correctly calculate \u003ccode\u003e@const\u003c/code\u003e blockers (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18039\"\u003e#18039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/7be1a0247f1ea84db2e951ab27716c68de5b0650\"\u003e\u003ccode\u003e7be1a02\u003c/code\u003e\u003c/a\u003e fix: ensure proper HMR updates for dynamic components (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18079\"\u003e#18079\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/a4ce7760705bc58454e954488719e2ef6d17cafa\"\u003e\u003ccode\u003ea4ce776\u003c/code\u003e\u003c/a\u003e fix: defer error boundary rendering in forks (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18076\"\u003e#18076\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sveltejs/svelte/commits/svelte@5.55.4/packages/svelte\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for svelte since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@saltcorn/data` from 1.1.4-alpha.3 to 1.4.5\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/saltcorn/saltcorn/blob/v1.4.5/CHANGELOG.md\"\u003e\u003ccode\u003e@​saltcorn/data\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.4.5 - Released 5 April 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: Prevent malicious payloads from traversing paths in sync endpoints\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.1 - Released 19 November 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eDropdown option for List header filters - mutually exclusive with togglable header filters. Filters are activated with a hidden (revealed on hover) dropdown menu.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eBug fixes backported from 1.5.0 branch\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.0 - Released 24 October 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eWhen PageLoad triggers return directives (\u003ccode\u003enotify\u003c/code\u003e, \u003ccode\u003eeval_js\u003c/code\u003e etc.) these are now run on the the\nclient page.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWhen Table.deleteRows is called without a user argument, it implicitly has admin access, to make\nit consistent with other methods\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSome initial and limited support for composite primary keys in discovered and external tables.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einsert_any_row action:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003enow accepts a list of rows in its row expression and will insert all of them.\u003c/li\u003e\n\u003cli\u003eif the primary key value is set in the row expression, it will upsert the row (update if a row with this primary key value exists, otherwise insert)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eActions now have an option to run asynchronously from the builder action settings. If this is enabled, and dynamic updates are enabled, the action will run in the background instead of during a HTTP request. This is more robust for long-running actions; there should be no difference in user experience.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eprogress_bar\u003c/code\u003e action: Display or update the display of a progress message. This can appear in a toast message for actions that can run in parallel; or in a blocking popup-up modal if the progress display is required to freeze the user interface.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eList view now have options for header filters, row colour by formula,  table layout setting (corresponds to table-layout CSS property) and sticky header.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFilter aggregations (count, average over a table subset) previously ignored ownership. There is now a partial implementation of the owbership restriction, however this is still incomplete for ownership formulas involving joinfields.\u003c/li\u003e\n\u003cli\u003eWhen serving HTML files that have been uploaded to the file store, the mime type is now set to text/plain (unless the user is the owner of the file) to prevent user-uploaded files performing session hijacking. This can be disabled in the securioty settings if you trust all uploaded html files and need to serve them.. MathJax and svg files are cleaned with dompurify before serving. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003cli\u003eIt was previously possibly for a logged-in user to craft a request to change their own password without supplying their old password. This is now checked. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix formula constraints to support more translations to SQL\u003c/li\u003e\n\u003cli\u003eEdit: preserve file choices on form errors.\u003c/li\u003e\n\u003cli\u003eFix format fieldview for only day Dates.\u003c/li\u003e\n\u003cli\u003eFix full screen width on containers - this conflicted with position, which it now overrides.\u003c/li\u003e\n\u003cli\u003eFix jsdoc links from code editor\u003c/li\u003e\n\u003cli\u003eFix date parsing when using flatpickr with locale and format\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.3.1 - Released 31 August 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce client assets for some plugins - if a view is not available for a role, its assets can be omitted.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/92d24ca5ce8480d3b0cf1067e33113f2a790030c\"\u003e\u003ccode\u003e92d24ca\u003c/code\u003e\u003c/a\u003e v1.4.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/7c945ca00b95cfe6ba65c5551e4509c220d64791\"\u003e\u003ccode\u003e7c945ca\u003c/code\u003e\u003c/a\u003e changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/9892338cc003293c90d34b4fa08e26a353cc0c3c\"\u003e\u003ccode\u003e9892338\u003c/code\u003e\u003c/a\u003e remove ts type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8154fd730a7a3c868ad49c5320147342305cc88b\"\u003e\u003ccode\u003e8154fd7\u003c/code\u003e\u003c/a\u003e if list col showif has no fields or row, use to eval if column should be show...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/09c87004014416854abce524ec7345e1c1b7db01\"\u003e\u003ccode\u003e09c8700\u003c/code\u003e\u003c/a\u003e offline changes var name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/17c73c5af56f45e5e9da8ddbcf9b6e0e9d13e6e8\"\u003e\u003ccode\u003e17c73c5\u003c/code\u003e\u003c/a\u003e loggedIn import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8ce8cd8768920534188650eea6f8b0d2643205ba\"\u003e\u003ccode\u003e8ce8cd8\u003c/code\u003e\u003c/a\u003e Fix non escaped table name (\u003ca href=\"https://redirect.github.com/saltcorn/saltcorn/issues/4052\"\u003e#4052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/26ef9291922abcfdf2d32594f398dbdcb4ee94b1\"\u003e\u003ccode\u003e26ef929\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/fb46c57d82c16cf5e161f4b3f08b1f7dbe38e1ae\"\u003e\u003ccode\u003efb46c57\u003c/code\u003e\u003c/a\u003e fix branch name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/55d489cebe26ed61518aab98038a4d87437e7189\"\u003e\u003ccode\u003e55d489c\u003c/code\u003e\u003c/a\u003e CI on stable branches\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/saltcorn/saltcorn/compare/v1.1.4-alpha.3...v1.4.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@saltcorn/data` from 1.1.4-alpha.3 to 1.4.5\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/saltcorn/saltcorn/blob/v1.4.5/CHANGELOG.md\"\u003e\u003ccode\u003e@​saltcorn/data\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.4.5 - Released 5 April 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: Prevent malicious payloads from traversing paths in sync endpoints\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.1 - Released 19 November 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eDropdown option for List header filters - mutually exclusive with togglable header filters. Filters are activated with a hidden (revealed on hover) dropdown menu.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eBug fixes backported from 1.5.0 branch\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.0 - Released 24 October 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eWhen PageLoad triggers return directives (\u003ccode\u003enotify\u003c/code\u003e, \u003ccode\u003eeval_js\u003c/code\u003e etc.) these are now run on the the\nclient page.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWhen Table.deleteRows is called without a user argument, it implicitly has admin access, to make\nit consistent with other methods\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSome initial and limited support for composite primary keys in discovered and external tables.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einsert_any_row action:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003enow accepts a list of rows in its row expression and will insert all of them.\u003c/li\u003e\n\u003cli\u003eif the primary key value is set in the row expression, it will upsert the row (update if a row with this primary key value exists, otherwise insert)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eActions now have an option to run asynchronously from the builder action settings. If this is enabled, and dynamic updates are enabled, the action will run in the background instead of during a HTTP request. This is more robust for long-running actions; there should be no difference in user experience.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eprogress_bar\u003c/code\u003e action: Display or update the display of a progress message. This can appear in a toast message for actions that can run in parallel; or in a blocking popup-up modal if the progress display is required to freeze the user interface.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eList view now have options for header filters, row colour by formula,  table layout setting (corresponds to table-layout CSS property) and sticky header.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFilter aggregations (count, average over a table subset) previously ignored ownership. There is now a partial implementation of the owbership restriction, however this is still incomplete for ownership formulas involving joinfields.\u003c/li\u003e\n\u003cli\u003eWhen serving HTML files that have been uploaded to the file store, the mime type is now set to text/plain (unless the user is the owner of the file) to prevent user-uploaded files performing session hijacking. This can be disabled in the securioty settings if you trust all uploaded html files and need to serve them.. MathJax and svg files are cleaned with dompurify before serving. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003cli\u003eIt was previously possibly for a logged-in user to craft a request to change their own password without supplying their old password. This is now checked. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix formula constraints to support more translations to SQL\u003c/li\u003e\n\u003cli\u003eEdit: preserve file choices on form errors.\u003c/li\u003e\n\u003cli\u003eFix format fieldview for only day Dates.\u003c/li\u003e\n\u003cli\u003eFix full screen width on containers - this conflicted with position, which it now overrides.\u003c/li\u003e\n\u003cli\u003eFix jsdoc links from code editor\u003c/li\u003e\n\u003cli\u003eFix date parsing when using flatpickr with locale and format\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.3.1 - Released 31 August 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce client assets for some plugins - if a view is not available for a role, its assets can be omitted.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/92d24ca5ce8480d3b0cf1067e33113f2a790030c\"\u003e\u003ccode\u003e92d24ca\u003c/code\u003e\u003c/a\u003e v1.4.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/7c945ca00b95cfe6ba65c5551e4509c220d64791\"\u003e\u003ccode\u003e7c945ca\u003c/code\u003e\u003c/a\u003e changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/9892338cc003293c90d34b4fa08e26a353cc0c3c\"\u003e\u003ccode\u003e9892338\u003c/code\u003e\u003c/a\u003e remove ts type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8154fd730a7a3c868ad49c5320147342305cc88b\"\u003e\u003ccode\u003e8154fd7\u003c/code\u003e\u003c/a\u003e if list col showif has no fields or row, use to eval if column should be show...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/09c87004014416854abce524ec7345e1c1b7db01\"\u003e\u003ccode\u003e09c8700\u003c/code\u003e\u003c/a\u003e offline changes var name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/17c73c5af56f45e5e9da8ddbcf9b6e0e9d13e6e8\"\u003e\u003ccode\u003e17c73c5\u003c/code\u003e\u003c/a\u003e loggedIn import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8ce8cd8768920534188650eea6f8b0d2643205ba\"\u003e\u003ccode\u003e8ce8cd8\u003c/code\u003e\u003c/a\u003e Fix non escaped table name (\u003ca href=\"https://redirect.github.com/saltcorn/saltcorn/issues/4052\"\u003e#4052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/26ef9291922abcfdf2d32594f398dbdcb4ee94b1\"\u003e\u003ccode\u003e26ef929\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/fb46c57d82c16cf5e161f4b3f08b1f7dbe38e1ae\"\u003e\u003ccode\u003efb46c57\u003c/code\u003e\u003c/a\u003e fix branch name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/55d489cebe26ed61518aab98038a4d87437e7189\"\u003e\u003ccode\u003e55d489c\u003c/code\u003e\u003c/a\u003e CI on stable branches\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/saltcorn/saltcorn/compare/v1.1.4-alpha.3...v1.4.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@saltcorn/data` from 1.1.4-alpha.3 to 1.4.5\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/saltcorn/saltcorn/blob/v1.4.5/CHANGELOG.md\"\u003e\u003ccode\u003e@​saltcorn/data\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.4.5 - Released 5 April 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: Prevent malicious payloads from traversing paths in sync endpoints\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.1 - Released 19 November 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eDropdown option for List header filters - mutually exclusive with togglable header filters. Filters are activated with a hidden (revealed on hover) dropdown menu.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eBug fixes backported from 1.5.0 branch\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.0 - Released 24 October 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eWhen PageLoad triggers return directives (\u003ccode\u003enotify\u003c/code\u003e, \u003ccode\u003eeval_js\u003c/code\u003e etc.) these are now run on the the\nclient page.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWhen Table.deleteRows is called without a user argument, it implicitly has admin access, to make\nit consistent with other methods\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSome initial and limited support for composite primary keys in discovered and external tables.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einsert_any_row action:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003enow accepts a list of rows in its row expression and will insert all of them.\u003c/li\u003e\n\u003cli\u003eif the primary key value is set in the row expression, it will upsert the row (update if a row with this primary key value exists, otherwise insert)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eActions now have an option to run asynchronously from the builder action settings. If this is enabled, and dynamic updates are enabled, the action will run in the background instead of during a HTTP request. This is more robust for long-running actions; there should be no difference in user experience.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eprogress_bar\u003c/code\u003e action: Display or update the display of a progress message. This can appear in a toast message for actions that can run in parallel; or in a blocking popup-up modal if the progress display is required to freeze the user interface.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eList view now have options for header filters, row colour by formula,  table layout setting (corresponds to table-layout CSS property) and sticky header.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFilter aggregations (count, average over a table subset) previously ignored ownership. There is now a partial implementation of the owbership restriction, however this is still incomplete for ownership formulas involving joinfields.\u003c/li\u003e\n\u003cli\u003eWhen serving HTML files that have been uploaded to the file store, the mime type is now set to text/plain (unless the user is the owner of the file) to prevent user-uploaded files performing session hijacking. This can be disabled in the securioty settings if you trust all uploaded html files and need to serve them.. MathJax and svg files are cleaned with dompurify before serving. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003cli\u003eIt was previously possibly for a logged-in user to craft a request to change their own password without supplying their old password. This is now checked. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix formula constraints to support more translations to SQL\u003c/li\u003e\n\u003cli\u003eEdit: preserve file choices on form errors.\u003c/li\u003e\n\u003cli\u003eFix format fieldview for only day Dates.\u003c/li\u003e\n\u003cli\u003eFix full screen width on containers - this conflicted with position, which it now overrides.\u003c/li\u003e\n\u003cli\u003eFix jsdoc links from code editor\u003c/li\u003e\n\u003cli\u003eFix date parsing when using flatpickr with locale and format\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.3.1 - Released 31 August 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce client assets for some plugins - if a view is not available for a role, its assets can be omitted.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/92d24ca5ce8480d3b0cf1067e33113f2a790030c\"\u003e\u003ccode\u003e92d24ca\u003c/code\u003e\u003c/a\u003e v1.4.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/7c945ca00b95cfe6ba65c5551e4509c220d64791\"\u003e\u003ccode\u003e7c945ca\u003c/code\u003e\u003c/a\u003e changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/9892338cc003293c90d34b4fa08e26a353cc0c3c\"\u003e\u003ccode\u003e9892338\u003c/code\u003e\u003c/a\u003e remove ts type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8154fd730a7a3c868ad49c5320147342305cc88b\"\u003e\u003ccode\u003e8154fd7\u003c/code\u003e\u003c/a\u003e if list col showif has no fields or row, use to eval if column should be show...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/09c87004014416854abce524ec7345e1c1b7db01\"\u003e\u003ccode\u003e09c8700\u003c/code\u003e\u003c/a\u003e offline changes var name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/17c73c5af56f45e5e9da8ddbcf9b6e0e9d13e6e8\"\u003e\u003ccode\u003e17c73c5\u003c/code\u003e\u003c/a\u003e loggedIn import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8ce8cd8768920534188650eea6f8b0d2643205ba\"\u003e\u003ccode\u003e8ce8cd8\u003c/code\u003e\u003c/a\u003e Fix non escaped table name (\u003ca href=\"https://redirect.github.com/saltcorn/saltcorn/issues/4052\"\u003e#4052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/26ef9291922abcfdf2d32594f398dbdcb4ee94b1\"\u003e\u003ccode\u003e26ef929\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/fb46c57d82c16cf5e161f4b3f08b1f7dbe38e1ae\"\u003e\u003ccode\u003efb46c57\u003c/code\u003e\u003c/a\u003e fix branch name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/55d489cebe26ed61518aab98038a4d87437e7189\"\u003e\u003ccode\u003e55d489c\u003c/code\u003e\u003c/a\u003e CI on stable branches\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/saltcorn/saltcorn/compare/v1.1.4-alpha.3...v1.4.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `immer` from 8.0.4 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/immerjs/immer/releases\"\u003eimmer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2021-08-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e Follow up on CVE-2020-28477 where \u003ccode\u003epath: [[\u0026quot;__proto__\u0026quot;], \u0026quot;x\u0026quot;]\u003c/code\u003e could still pollute the prototype (\u003ca href=\"https://github.com/immerjs/immer/commit/fa671e55ee9bd42ae08cc239102b665a23958237\"\u003efa671e5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.5\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.4...v9.0.5\"\u003e9.0.5\u003c/a\u003e (2021-07-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease missing dist/ folder (\u003ca href=\"https://github.com/immerjs/immer/commit/bfb8decc92ded85d035da4b0c70dd642bb25e451\"\u003ebfb8dec\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.3...v9.0.4\"\u003e9.0.4\u003c/a\u003e (2021-07-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/791\"\u003e#791\u003c/a\u003e return 'nothing' should produce undefined patch (\u003ca href=\"https://github.com/immerjs/immer/commit/5412c9f770663d0f19fe9bdaeabfa05ff3127cc9\"\u003e5412c9f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/807\"\u003e#807\u003c/a\u003e new undefined properties should end up in result object (\u003ca href=\"https://github.com/immerjs/immer/commit/dc3f66cdea53fd5a8c814924bfafa9f6b53c9c62\"\u003edc3f66c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBetter applyPatches type (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/810\"\u003e#810\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/09ac097513714130e08ff18bc7496c4fd04f6531\"\u003e09ac097\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/immerjs/immer/issues/809\"\u003e#809\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.2...v9.0.3\"\u003e9.0.3\u003c/a\u003e (2021-06-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eisPlainObject: add quick comparison between input and \u003ccode\u003eObject\u003c/code\u003e to short-circuit taxing \u003ccode\u003eFunction.toString\u003c/code\u003e invocations (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/805\"\u003e#805\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/07575f38f49babcc6014dc898e77d39e4a9347b1\"\u003e07575f3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.1...v9.0.2\"\u003e9.0.2\u003c/a\u003e (2021-04-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/785\"\u003e#785\u003c/a\u003e fix type inference for produce incorrectly inferring promise (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/786\"\u003e#786\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/6555173838f575d48a3fcb825c5a7d1953573a11\"\u003e6555173\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.0...v9.0.1\"\u003e9.0.1\u003c/a\u003e (2021-03-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/768\"\u003e#768\u003c/a\u003e \u003ccode\u003eimmerable\u003c/code\u003e field being lost during patch value cloning (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/771\"\u003e#771\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/e0b7c01c4ce039b7a68b5cb3cd97a7242962b7ab\"\u003ee0b7c01\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/fa671e55ee9bd42ae08cc239102b665a23958237\"\u003e\u003ccode\u003efa671e5\u003c/code\u003e\u003c/a\u003e fix(security): Follow up on CVE-2020-28477 where \u003ccode\u003epath: [[\u0026quot;__proto__\u0026quot;], \u0026quot;x\u0026quot;]\u003c/code\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/2e0aa95b5002dd235ac51a1e2d6ae4fc65361dbc\"\u003e\u003ccode\u003e2e0aa95\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/050522dea1d0b3810e1896d8f01c79ce89e4186c\"\u003e\u003ccode\u003e050522d\u003c/code\u003e\u003c/a\u003e chore: fix CI. maybe.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/11955103ee6d63adc819438d76ac8a8585e1c44e\"\u003e\u003ccode\u003e1195510\u003c/code\u003e\u003c/a\u003e docs: Update example-setstate.mdx (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/833\"\u003e#833\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/648d39bc72426d1772633acd48909b953d474672\"\u003e\u003ccode\u003e648d39b\u003c/code\u003e\u003c/a\u003e docs: fixing link to RFC-6902 \u0026amp; fixing typo (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/830\"\u003e#830\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/bc890f751bae6a26bd0eb61022cfea45517bc52a\"\u003e\u003ccode\u003ebc890f7\u003c/code\u003e\u003c/a\u003e docs: Update example-setstate.mdx (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/829\"\u003e#829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/16a3d0f36ceefeed7f4e7db8b4341b1d21f52636\"\u003e\u003ccode\u003e16a3d0f\u003c/code\u003e\u003c/a\u003e chore(deps): bump prismjs from 1.23.0 to 1.24.0 in /website (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/822\"\u003e#822\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/847492c42043c38674642413a69a4a6fdfe648e7\"\u003e\u003ccode\u003e847492c\u003c/code\u003e\u003c/a\u003e docs: Extended / updated documenation (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/824\"\u003e#824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/7f414838a7aa84bd55f03d31afb0ee85c6cae2f5\"\u003e\u003ccode\u003e7f41483\u003c/code\u003e\u003c/a\u003e chore: [workflows] don't release from forks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/3f9a94e9e7502001ceda15614dabf423e98c7091\"\u003e\u003ccode\u003e3f9a94e\u003c/code\u003e\u003c/a\u003e chore: let's test before publish\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/immerjs/immer/compare/v8.0.4...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/traverse` from 7.9.6 to 7.29.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/traverse\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.0 (2026-01-31)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e for your first PR!\u003c/p\u003e\n\u003ch4\u003e:rocket: New Feature\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17750\"\u003e#17750\u003c/a\u003e [7.x backport] Add attributes import declaration builder (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17663\"\u003e#17663\u003c/a\u003e [7.x backport] feat(standalone): export async transform (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17725\"\u003e#17725\u003c/a\u003e [7.x backport] feat: read standalone targets from data-targets (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17765\"\u003e#17765\u003c/a\u003e fix(parser): correctly parse type assertions in \u003ccode\u003eextends\u003c/code\u003e clause (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17723\"\u003e#17723\u003c/a\u003e [7.x backport] fix(parser): improve super type argument parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17708\"\u003e#17708\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentPath is given (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-block-scoping\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17737\"\u003e#17737\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates shadowing variable (\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17642\"\u003e#17642\u003c/a\u003e [Babel 7] Improve generator performance (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 6\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDavid (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aa8394e454337d118ac3d40bfa3ee1a3cb3f3ed2\"\u003e\u003ccode\u003eaa8394e\u003c/code\u003e\u003c/a\u003e v7.29.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/84366a8ea453814e732784db74cf2e2b6635eb6f\"\u003e\u003ccode\u003e84366a8\u003c/code\u003e\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentP...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/229eb452c5d5d2be0dc138ec2956aff7ff1057d7\"\u003e\u003ccode\u003e229eb45\u003c/code\u003e\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/905bc22b2fff23673eabe467815c67b29bf8bba2\"\u003e\u003ccode\u003e905bc22\u003c/code\u003e\u003c/a\u003e fix: lint errors in main branch (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17612\"\u003e#17612\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a03e2b63ae530674e866b60350b7eb4a5fcb5f59\"\u003e\u003ccode\u003ea03e2b6\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003epath.evaluate\u003c/code\u003e correctly returns \u003ccode\u003econfident\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17584\"\u003e#17584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aac2c37e11ad58905f7f9606103074e80bacbbcd\"\u003e\u003ccode\u003eaac2c37\u003c/code\u003e\u003c/a\u003e chore: Use Gulpfile.mts (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17579\"\u003e#17579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/65c4a6b3ee0e1d32801529e841572bb22534e1f3\"\u003e\u003ccode\u003e65c4a6b\u003c/code\u003e\u003c/a\u003e [Babel 8] fix: Improve \u003ccode\u003etraverse\u003c/code\u003e types (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17574\"\u003e#17574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c92c4919771105140015167f25f7bacac77c90d9\"\u003e\u003ccode\u003ec92c491\u003c/code\u003e\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17589\"\u003e#17589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.0/packages/babel-traverse\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/traverse\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `picomatch` from 2.2.2 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/releases\"\u003epicomatch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.2\u003c/h2\u003e\n\u003cp\u003eThis is a security release fixing several security relevant issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: exception when glob pattern contains constructor by \u003ca href=\"https://github.com/Jason3S\"\u003e\u003ccode\u003e@​Jason3S\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/micromatch/picomatch/pull/144\"\u003emicromatch/picomatch#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj\"\u003eCVE-2026-33671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p\"\u003eCVE-2026-33672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ehttps://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e2.3.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes bug when a pattern containing an expression after the closing parenthesis (\u003ccode\u003e/!(*.d).{ts,tsx}\u003c/code\u003e) was incorrectly converted to regexp (\u003ca href=\"https://github.com/micromatch/picomatch/commit/9f241ef\"\u003e9f241ef\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSome documentation improvements (\u003ca href=\"https://github.com/micromatch/picomatch/commit/f81d236\"\u003ef81d236\u003c/a\u003e, \u003ca href=\"https://github.com/micromatch/picomatch/commit/421e0e7\"\u003e421e0e7\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.2.3\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not skip pattern seperator for square brackets (\u003ca href=\"https://github.com/micromatch/picomatch/commit/fb08a30\"\u003efb08a30\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eSet negatedExtGlob also if it does not span the whole pattern (\u003ca href=\"https://github.com/micromatch/picomatch/commit/032e3f5\"\u003e032e3f5\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md\"\u003epicomatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eAll notable changes to this project will be documented in this file.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e4.0.0 (2024-02-07)\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad text values in parse \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/126\"\u003e#126\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/connor4312\"\u003e\u003ccode\u003e@​connor4312\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove process global to work outside of node \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/129\"\u003e#129\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/styfle\"\u003e\u003ccode\u003e@​styfle\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sideEffects to package.json \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/128\"\u003e#128\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/frandiox\"\u003e\u003ccode\u003e@​frandiox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003eos\u003c/code\u003e, make compatible browser environment. See \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/124\"\u003e#124\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/gwsbhqt\"\u003e\u003ccode\u003e@​gwsbhqt\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.1\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/81cba8d4b767cab3cb29d26eb4f691eed75b73b2\"\u003e\u003ccode\u003e81cba8d\u003c/code\u003e\u003c/a\u003e Publish 2.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/fc1f6b69006e9435caf8fb40d8aff378bc0b7bce\"\u003e\u003ccode\u003efc1f6b6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/eec17aee5428a7249e9ca5adbb8a0d28fa29619b\"\u003e\u003ccode\u003eeec17ae\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/78f8ca4362d9e66cadea97b93e292f10096452ed\"\u003e\u003ccode\u003e78f8ca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/156\"\u003e#156\u003c/a\u003e from micromatch/backport-144\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/3f4f10eaa65bf3a52e8f2999674cd27e11fa3c9b\"\u003e\u003ccode\u003e3f4f10e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/144\"\u003e#144\u003c/a\u003e from Jason3S/jdent-object-properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/5467a5a9638472610de4f30709991b9a56bb5613\"\u003e\u003ccode\u003e5467a5a\u003c/code\u003e\u003c/a\u003e 2.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/9f241efedc15a21bcec1edafd43ee773ceb4bc35\"\u003e\u003ccode\u003e9f241ef\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/102\"\u003e#102\u003c/a\u003e from micromatch/ISSUE-93_incorrect_extglob_expanding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/ac3cb660ca76764627aa825676df59378dd60bcd\"\u003e\u003ccode\u003eac3cb66\u003c/code\u003e\u003c/a\u003e fix: support stars in negation extglobs with expression after closing parenth...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/719d348d8a01cf23c6c10568191c1ad5a3fc33e3\"\u003e\u003ccode\u003e719d348\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/85\"\u003e#85\u003c/a\u003e from XhmikosR/codeql\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/ac74e57b38a0d16de8e1752a62003e49c1622cec\"\u003e\u003ccode\u003eac74e57\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/91\"\u003e#91\u003c/a\u003e from XhmikosR/patch-1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.2.2...2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~danez\"\u003edanez\u003c/a\u003e, a new releaser for picomatch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `braces` from 2.3.2 to 3.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/braces/blob/master/CHANGELOG.md\"\u003ebraces's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003eAll notable changes to this project will be documented in this file.\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e[3.0.0] - 2018-04-08\u003c/h2\u003e\n\u003cp\u003ev3.0 is a complete refactor, resulting in a faster, smaller codebase, with fewer deps, and a more accurate parser and compiler.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe undocumented \u003ccode\u003e.makeRe\u003c/code\u003e method was removed\u003c/li\u003e\n\u003cli\u003eRequire Node.js \u0026gt;= 8.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNon-breaking changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCaching was removed\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/micromatch/braces/commits/3.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/4419b6e73f21516c6d53ca4165cb7abb3d79ae24\"\u003e\u003ccode\u003e4419b6e\u003c/code\u003e\u003c/a\u003e 5.1.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/383ce59133bc582fce638f46cea59edf6b224753\"\u003e\u003ccode\u003e383ce59\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b02ef18f66329dc1d7bc8e37863a37b317c5b74e\"\u003e\u003ccode\u003eb02ef18\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/e92ae291a1e512f2d7ae13d6797b02315f68a40c\"\u003e\u003ccode\u003ee92ae29\u003c/code\u003e\u003c/a\u003e 5.1.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/79e44472e457ca43a3f2acebe19288a436db28c4\"\u003e\u003ccode\u003e79e4447\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/85ec0ff1bb34f2b200990140f4f9bdbaa8fb99aa\"\u003e\u003ccode\u003e85ec0ff\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/647146e67c1f47287a4b8d834e28c671c712d639\"\u003e\u003ccode\u003e647146e\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/85646c8f2739fdb0bc3b744606117a9d63f97c74\"\u003e\u003ccode\u003e85646c8\u003c/code\u003e\u003c/a\u003e 5.1.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/977c2d874aff7d416bf91c92b6aef7ab1f926f9b\"\u003e\u003ccode\u003e977c2d8\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/421ad1288bac5ef85e0f1b47155d85a69d753b79\"\u003e\u003ccode\u003e421ad12\u003c/code\u003e\u003c/a\u003e update test expectations for coalesced consecutive stars\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `y18n` from 4.0.0 to 5.0.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yargs/y18n/releases\"\u003ey18n's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ey18n y18n-v4.0.3\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e 4.x.x should not enforce Node 10 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/126\"\u003e#126\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/1e21a536e9135d8403a47be88922157a706b7cde\"\u003e1e21a53\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ey18n y18n-v4.0.2\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e ensure entry exists for backport (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/120\"\u003e#120\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/b22c0df59d0851d7be9fd1d51f6a5ee974c9fc94\"\u003eb22c0df\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yargs/y18n/blob/master/CHANGELOG.md\"\u003ey18n's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.7...v5.0.8\"\u003e5.0.8\u003c/a\u003e (2021-04-07)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeno:\u003c/strong\u003e force modern release for Deno (\u003ca href=\"https://www.github.com/yargs/y18n/commit/b1c215aed714bee5830e76de3e335504dc2c4dab\"\u003eb1c215a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https:/...\n\n_Description has been truncated_","html_url":"https://github.com/protonalialol/saltcorn/pull/22","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/protonalialol%2Fsaltcorn/issues/22","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/22/packages"}},{"old_version":"3.5.2","new_version":"3.5.4","update_type":"patch","path":null,"pr_created_at":"2026-04-10T19:45:57.000Z","version_change":"3.5.2 → 3.5.4","issue":{"uuid":"4241398338","node_id":"PR_kwDOOPPMvM7RjcP0","number":21,"state":"closed","title":"Bump the npm_and_yarn group across 11 directories with 23 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-15T23:09:10.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-10T19:45:57.000Z","updated_at":"2026-04-15T23:09:12.000Z","time_to_close":444193,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":23,"packages":[{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"formidable","old_version":"3.5.2","new_version":"3.5.4","repository_url":"https://github.com/node-formidable/formidable"},{"name":"glob","old_version":"10.4.5","new_version":"13.0.6","repository_url":"https://github.com/isaacs/node-glob"},{"name":"minimatch","old_version":"5.1.6","new_version":"5.1.9","repository_url":"https://github.com/isaacs/minimatch"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"minimatch","old_version":"9.0.5","new_version":"9.0.9","repository_url":"https://github.com/isaacs/minimatch"},{"name":"form-data","old_version":"4.0.2","new_version":"4.0.5","repository_url":"https://github.com/form-data/form-data"},{"name":"@saltcorn/data","old_version":"1.1.4-alpha.3","new_version":"1.4.5","repository_url":"https://github.com/saltcorn/saltcorn"},{"name":"pbkdf2","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/browserify/pbkdf2"},{"name":"serialize-javascript","old_version":"6.0.2","new_version":"removed","repository_url":"https://github.com/yahoo/serialize-javascript"},{"name":"@saltcorn/server","old_version":"1.1.4-alpha.3","new_version":"1.5.5","repository_url":"https://github.com/saltcorn/saltcorn"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 1 update in the /packages/filemanager directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 1 update in the /packages/plugins-loader directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-builder directory: [lodash](https://github.com/lodash/lodash).\nBumps the npm_and_yarn group with 10 updates in the /packages/saltcorn-cli directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.2` | `3.5.4` |\n| [glob](https://github.com/isaacs/node-glob) | `10.4.5` | `13.0.6` |\n| [minimatch](https://github.com/isaacs/minimatch) | `5.1.6` | `5.1.9` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `9.0.5` | `9.0.9` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.2` | `4.0.5` |\n| [@saltcorn/data](https://github.com/saltcorn/saltcorn) | `1.1.4-alpha.3` | `1.4.5` |\n| [pbkdf2](https://github.com/browserify/pbkdf2) | `3.1.2` | `3.1.5` |\n| [serialize-javascript](https://github.com/yahoo/serialize-javascript) | `6.0.2` | `removed` |\n| [@saltcorn/server](https://github.com/saltcorn/saltcorn) | `1.1.4-alpha.3` | `1.5.5` |\n\nBumps the npm_and_yarn group with 3 updates in the /packages/saltcorn-data directory: [webpack](https://github.com/webpack/webpack), [axios](https://github.com/axios/axios) and [nodemailer](https://github.com/nodemailer/nodemailer).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-markup directory: [webpack](https://github.com/webpack/webpack).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-mobile-app directory: [webpack](https://github.com/webpack/webpack).\nBumps the npm_and_yarn group with 3 updates in the /packages/saltcorn-mobile-builder directory: [webpack](https://github.com/webpack/webpack), [@saltcorn/data](https://github.com/saltcorn/saltcorn) and [@saltcorn/server](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 2 updates in the /packages/saltcorn-random-tests directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn) and [@saltcorn/server](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 1 update in the /packages/saltcorn-sbadmin2 directory: [@saltcorn/data](https://github.com/saltcorn/saltcorn).\nBumps the npm_and_yarn group with 3 updates in the /packages/server directory: [underscore](https://github.com/jashkenas/underscore), [multer](https://github.com/expressjs/multer) and [@saltcorn/data](https://github.com/saltcorn/saltcorn).\n\nUpdates `svelte` from 4.2.20 to 5.55.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/releases\"\u003esvelte's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esvelte@5.55.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: ensure proper HMR updates for dynamic components (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18079\"\u003e#18079\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly calculate \u003ccode\u003e@const\u003c/code\u003e blockers (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18039\"\u003e#18039\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: freeze deriveds once their containing effects are destroyed (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17921\"\u003e#17921\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: defer error boundary rendering in forks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18076\"\u003e#18076\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: avoid false positives for reactivity loss warning (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18088\"\u003e#18088\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.55.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: invalidate \u003ccode\u003e@const\u003c/code\u003e tags based on visible references in legacy mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18041\"\u003e#18041\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle parens in template expressions more robustly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18075\"\u003e#18075\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: disallow \u003ccode\u003e--\u003c/code\u003e in \u003ccode\u003eidPrefix\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18038\"\u003e#18038\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correct types for \u003ccode\u003eontoggle\u003c/code\u003e on \u003ccode\u003e\u0026lt;details\u0026gt;\u003c/code\u003e elements (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18063\"\u003e#18063\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't override \u003ccode\u003e$destroy/set/on\u003c/code\u003e instance methods in dev mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18034\"\u003e#18034\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: unskip branches of earlier batches after commit (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18048\"\u003e#18048\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: never set derived.v inside fork (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18037\"\u003e#18037\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: skip rebase logic in non-async mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18040\"\u003e#18040\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't reset status of uninitialized deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18054\"\u003e#18054\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.55.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly handle bindings on the server (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18009\"\u003e#18009\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent hydration error on async \u003ccode\u003e{@html ...}\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17999\"\u003e#17999\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: cleanup \u003ccode\u003esuperTypeParameters\u003c/code\u003e in \u003ccode\u003eClassDeclarations\u003c/code\u003e/\u003ccode\u003eClassExpression\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18015\"\u003e#18015\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: improve duplicate module import error message (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18016\"\u003e#18016\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: reschedule new effects in prior batches (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18021\"\u003e#18021\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.55.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md\"\u003esvelte's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.55.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: ensure proper HMR updates for dynamic components (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18079\"\u003e#18079\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly calculate \u003ccode\u003e@const\u003c/code\u003e blockers (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18039\"\u003e#18039\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: freeze deriveds once their containing effects are destroyed (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17921\"\u003e#17921\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: defer error boundary rendering in forks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18076\"\u003e#18076\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: avoid false positives for reactivity loss warning (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18088\"\u003e#18088\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.55.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: invalidate \u003ccode\u003e@const\u003c/code\u003e tags based on visible references in legacy mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18041\"\u003e#18041\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle parens in template expressions more robustly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18075\"\u003e#18075\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: disallow \u003ccode\u003e--\u003c/code\u003e in \u003ccode\u003eidPrefix\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18038\"\u003e#18038\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: correct types for \u003ccode\u003eontoggle\u003c/code\u003e on \u003ccode\u003e\u0026lt;details\u0026gt;\u003c/code\u003e elements (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18063\"\u003e#18063\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't override \u003ccode\u003e$destroy/set/on\u003c/code\u003e instance methods in dev mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18034\"\u003e#18034\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: unskip branches of earlier batches after commit (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18048\"\u003e#18048\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: never set derived.v inside fork (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18037\"\u003e#18037\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: skip rebase logic in non-async mode (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18040\"\u003e#18040\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: don't reset status of uninitialized deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18054\"\u003e#18054\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.55.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: correctly handle bindings on the server (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18009\"\u003e#18009\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent hydration error on async \u003ccode\u003e{@html ...}\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17999\"\u003e#17999\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: cleanup \u003ccode\u003esuperTypeParameters\u003c/code\u003e in \u003ccode\u003eClassDeclarations\u003c/code\u003e/\u003ccode\u003eClassExpression\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18015\"\u003e#18015\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: improve duplicate module import error message (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18016\"\u003e#18016\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: reschedule new effects in prior batches (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/18021\"\u003e#18021\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/4a50e8ea3b7db1d8cd752b825032e4ce2878524b\"\u003e\u003ccode\u003e4a50e8e\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18085\"\u003e#18085\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/15588f5fbfe736f65e189e56047ee08678f5509f\"\u003e\u003ccode\u003e15588f5\u003c/code\u003e\u003c/a\u003e fix: avoid false positives for reactivity loss warning (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18088\"\u003e#18088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0e9e76f29262b5f64ac7a5d4db37ec83c9181634\"\u003e\u003ccode\u003e0e9e76f\u003c/code\u003e\u003c/a\u003e fix: freeze deriveds once their containing effects are destroyed (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17921\"\u003e#17921\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/3937ec03bdaae8d9c097f4f015560ee4b9e32cf3\"\u003e\u003ccode\u003e3937ec0\u003c/code\u003e\u003c/a\u003e fix: correctly calculate \u003ccode\u003e@const\u003c/code\u003e blockers (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18039\"\u003e#18039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/7be1a0247f1ea84db2e951ab27716c68de5b0650\"\u003e\u003ccode\u003e7be1a02\u003c/code\u003e\u003c/a\u003e fix: ensure proper HMR updates for dynamic components (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18079\"\u003e#18079\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/a4ce7760705bc58454e954488719e2ef6d17cafa\"\u003e\u003ccode\u003ea4ce776\u003c/code\u003e\u003c/a\u003e fix: defer error boundary rendering in forks (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18076\"\u003e#18076\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/2e29c87cc9f41ce3cab70ce3cff0c6dc85b009f5\"\u003e\u003ccode\u003e2e29c87\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18036\"\u003e#18036\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/6b653b8d17c80b16659c5238875977f0941490c2\"\u003e\u003ccode\u003e6b653b8\u003c/code\u003e\u003c/a\u003e chore: simplify parser (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18077\"\u003e#18077\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/8966601dcd14582cd46d4fbb7c5cf1b444292255\"\u003e\u003ccode\u003e8966601\u003c/code\u003e\u003c/a\u003e fix: handle parens in template expressions more robustly (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18075\"\u003e#18075\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0395ef0df7ff12c4b633b650c5f2db512d382836\"\u003e\u003ccode\u003e0395ef0\u003c/code\u003e\u003c/a\u003e fix: unskip branches of earlier batches after commit (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/18048\"\u003e#18048\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sveltejs/svelte/commits/svelte@5.55.3/packages/svelte\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for svelte since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@saltcorn/data` from 1.1.4-alpha.3 to 1.4.5\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/saltcorn/saltcorn/blob/v1.4.5/CHANGELOG.md\"\u003e\u003ccode\u003e@​saltcorn/data\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.4.5 - Released 5 April 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity: Prevent malicious payloads from traversing paths in sync endpoints\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.1 - Released 19 November 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eDropdown option for List header filters - mutually exclusive with togglable header filters. Filters are activated with a hidden (revealed on hover) dropdown menu.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eBug fixes backported from 1.5.0 branch\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.0 - Released 24 October 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eWhen PageLoad triggers return directives (\u003ccode\u003enotify\u003c/code\u003e, \u003ccode\u003eeval_js\u003c/code\u003e etc.) these are now run on the the\nclient page.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eWhen Table.deleteRows is called without a user argument, it implicitly has admin access, to make\nit consistent with other methods\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSome initial and limited support for composite primary keys in discovered and external tables.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einsert_any_row action:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003enow accepts a list of rows in its row expression and will insert all of them.\u003c/li\u003e\n\u003cli\u003eif the primary key value is set in the row expression, it will upsert the row (update if a row with this primary key value exists, otherwise insert)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eActions now have an option to run asynchronously from the builder action settings. If this is enabled, and dynamic updates are enabled, the action will run in the background instead of during a HTTP request. This is more robust for long-running actions; there should be no difference in user experience.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eprogress_bar\u003c/code\u003e action: Display or update the display of a progress message. This can appear in a toast message for actions that can run in parallel; or in a blocking popup-up modal if the progress display is required to freeze the user interface.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eList view now have options for header filters, row colour by formula,  table layout setting (corresponds to table-layout CSS property) and sticky header.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFilter aggregations (count, average over a table subset) previously ignored ownership. There is now a partial implementation of the owbership restriction, however this is still incomplete for ownership formulas involving joinfields.\u003c/li\u003e\n\u003cli\u003eWhen serving HTML files that have been uploaded to the file store, the mime type is now set to text/plain (unless the user is the owner of the file) to prevent user-uploaded files performing session hijacking. This can be disabled in the securioty settings if you trust all uploaded html files and need to serve them.. MathJax and svg files are cleaned with dompurify before serving. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003cli\u003eIt was previously possibly for a logged-in user to craft a request to change their own password without supplying their old password. This is now checked. Reported by luriel at Hakai Security.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix formula constraints to support more translations to SQL\u003c/li\u003e\n\u003cli\u003eEdit: preserve file choices on form errors.\u003c/li\u003e\n\u003cli\u003eFix format fieldview for only day Dates.\u003c/li\u003e\n\u003cli\u003eFix full screen width on containers - this conflicted with position, which it now overrides.\u003c/li\u003e\n\u003cli\u003eFix jsdoc links from code editor\u003c/li\u003e\n\u003cli\u003eFix date parsing when using flatpickr with locale and format\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.3.1 - Released 31 August 2025\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduce client assets for some plugins - if a view is not available for a role, its assets can be omitted.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/92d24ca5ce8480d3b0cf1067e33113f2a790030c\"\u003e\u003ccode\u003e92d24ca\u003c/code\u003e\u003c/a\u003e v1.4.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/7c945ca00b95cfe6ba65c5551e4509c220d64791\"\u003e\u003ccode\u003e7c945ca\u003c/code\u003e\u003c/a\u003e changelog [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/9892338cc003293c90d34b4fa08e26a353cc0c3c\"\u003e\u003ccode\u003e9892338\u003c/code\u003e\u003c/a\u003e remove ts type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8154fd730a7a3c868ad49c5320147342305cc88b\"\u003e\u003ccode\u003e8154fd7\u003c/code\u003e\u003c/a\u003e if list col showif has no fields or row, use to eval if column should be show...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/09c87004014416854abce524ec7345e1c1b7db01\"\u003e\u003ccode\u003e09c8700\u003c/code\u003e\u003c/a\u003e offline changes var name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/17c73c5af56f45e5e9da8ddbcf9b6e0e9d13e6e8\"\u003e\u003ccode\u003e17c73c5\u003c/code\u003e\u003c/a\u003e loggedIn import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/8ce8cd8768920534188650eea6f8b0d2643205ba\"\u003e\u003ccode\u003e8ce8cd8\u003c/code\u003e\u003c/a\u003e Fix non escaped table name (\u003ca href=\"https://redirect.github.com/saltcorn/saltcorn/issues/4052\"\u003e#4052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/26ef9291922abcfdf2d32594f398dbdcb4ee94b1\"\u003e\u003ccode\u003e26ef929\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/fb46c57d82c16cf5e161f4b3f08b1f7dbe38e1ae\"\u003e\u003ccode\u003efb46c57\u003c/code\u003e\u003c/a\u003e fix branch name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saltcorn/saltcorn/commit/55d489cebe26ed61518aab98038a4d87437e7189\"\u003e\u003ccode\u003e55d489c\u003c/code\u003e\u003c/a\u003e CI on stable branches\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/saltcorn/saltcorn/compare/v1.1.4-alpha.3...v1.4.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `immer` from 8.0.4 to 9.0.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/immerjs/immer/releases\"\u003eimmer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.5...v9.0.6\"\u003e9.0.6\u003c/a\u003e (2021-08-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e Follow up on CVE-2020-28477 where \u003ccode\u003epath: [[\u0026quot;__proto__\u0026quot;], \u0026quot;x\u0026quot;]\u003c/code\u003e could still pollute the prototype (\u003ca href=\"https://github.com/immerjs/immer/commit/fa671e55ee9bd42ae08cc239102b665a23958237\"\u003efa671e5\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.5\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.4...v9.0.5\"\u003e9.0.5\u003c/a\u003e (2021-07-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erelease missing dist/ folder (\u003ca href=\"https://github.com/immerjs/immer/commit/bfb8decc92ded85d035da4b0c70dd642bb25e451\"\u003ebfb8dec\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.3...v9.0.4\"\u003e9.0.4\u003c/a\u003e (2021-07-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/791\"\u003e#791\u003c/a\u003e return 'nothing' should produce undefined patch (\u003ca href=\"https://github.com/immerjs/immer/commit/5412c9f770663d0f19fe9bdaeabfa05ff3127cc9\"\u003e5412c9f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/807\"\u003e#807\u003c/a\u003e new undefined properties should end up in result object (\u003ca href=\"https://github.com/immerjs/immer/commit/dc3f66cdea53fd5a8c814924bfafa9f6b53c9c62\"\u003edc3f66c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBetter applyPatches type (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/810\"\u003e#810\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/09ac097513714130e08ff18bc7496c4fd04f6531\"\u003e09ac097\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/immerjs/immer/issues/809\"\u003e#809\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.2...v9.0.3\"\u003e9.0.3\u003c/a\u003e (2021-06-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eisPlainObject: add quick comparison between input and \u003ccode\u003eObject\u003c/code\u003e to short-circuit taxing \u003ccode\u003eFunction.toString\u003c/code\u003e invocations (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/805\"\u003e#805\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/07575f38f49babcc6014dc898e77d39e4a9347b1\"\u003e07575f3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.1...v9.0.2\"\u003e9.0.2\u003c/a\u003e (2021-04-25)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/785\"\u003e#785\u003c/a\u003e fix type inference for produce incorrectly inferring promise (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/786\"\u003e#786\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/6555173838f575d48a3fcb825c5a7d1953573a11\"\u003e6555173\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev9.0.1\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/immerjs/immer/compare/v9.0.0...v9.0.1\"\u003e9.0.1\u003c/a\u003e (2021-03-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/768\"\u003e#768\u003c/a\u003e \u003ccode\u003eimmerable\u003c/code\u003e field being lost during patch value cloning (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/771\"\u003e#771\u003c/a\u003e) (\u003ca href=\"https://github.com/immerjs/immer/commit/e0b7c01c4ce039b7a68b5cb3cd97a7242962b7ab\"\u003ee0b7c01\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/fa671e55ee9bd42ae08cc239102b665a23958237\"\u003e\u003ccode\u003efa671e5\u003c/code\u003e\u003c/a\u003e fix(security): Follow up on CVE-2020-28477 where \u003ccode\u003epath: [[\u0026quot;__proto__\u0026quot;], \u0026quot;x\u0026quot;]\u003c/code\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/2e0aa95b5002dd235ac51a1e2d6ae4fc65361dbc\"\u003e\u003ccode\u003e2e0aa95\u003c/code\u003e\u003c/a\u003e Create SECURITY.md\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/050522dea1d0b3810e1896d8f01c79ce89e4186c\"\u003e\u003ccode\u003e050522d\u003c/code\u003e\u003c/a\u003e chore: fix CI. maybe.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/11955103ee6d63adc819438d76ac8a8585e1c44e\"\u003e\u003ccode\u003e1195510\u003c/code\u003e\u003c/a\u003e docs: Update example-setstate.mdx (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/833\"\u003e#833\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/648d39bc72426d1772633acd48909b953d474672\"\u003e\u003ccode\u003e648d39b\u003c/code\u003e\u003c/a\u003e docs: fixing link to RFC-6902 \u0026amp; fixing typo (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/830\"\u003e#830\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/bc890f751bae6a26bd0eb61022cfea45517bc52a\"\u003e\u003ccode\u003ebc890f7\u003c/code\u003e\u003c/a\u003e docs: Update example-setstate.mdx (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/829\"\u003e#829\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/16a3d0f36ceefeed7f4e7db8b4341b1d21f52636\"\u003e\u003ccode\u003e16a3d0f\u003c/code\u003e\u003c/a\u003e chore(deps): bump prismjs from 1.23.0 to 1.24.0 in /website (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/822\"\u003e#822\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/847492c42043c38674642413a69a4a6fdfe648e7\"\u003e\u003ccode\u003e847492c\u003c/code\u003e\u003c/a\u003e docs: Extended / updated documenation (\u003ca href=\"https://redirect.github.com/immerjs/immer/issues/824\"\u003e#824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/7f414838a7aa84bd55f03d31afb0ee85c6cae2f5\"\u003e\u003ccode\u003e7f41483\u003c/code\u003e\u003c/a\u003e chore: [workflows] don't release from forks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immerjs/immer/commit/3f9a94e9e7502001ceda15614dabf423e98c7091\"\u003e\u003ccode\u003e3f9a94e\u003c/code\u003e\u003c/a\u003e chore: let's test before publish\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/immerjs/immer/compare/v8.0.4...v9.0.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/traverse` from 7.9.6 to 7.29.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/traverse\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.0 (2026-01-31)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e for your first PR!\u003c/p\u003e\n\u003ch4\u003e:rocket: New Feature\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17750\"\u003e#17750\u003c/a\u003e [7.x backport] Add attributes import declaration builder (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17663\"\u003e#17663\u003c/a\u003e [7.x backport] feat(standalone): export async transform (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17725\"\u003e#17725\u003c/a\u003e [7.x backport] feat: read standalone targets from data-targets (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17765\"\u003e#17765\u003c/a\u003e fix(parser): correctly parse type assertions in \u003ccode\u003eextends\u003c/code\u003e clause (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17723\"\u003e#17723\u003c/a\u003e [7.x backport] fix(parser): improve super type argument parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17708\"\u003e#17708\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentPath is given (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-block-scoping\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17737\"\u003e#17737\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates shadowing variable (\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17642\"\u003e#17642\u003c/a\u003e [Babel 7] Improve generator performance (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 6\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDavid (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aa8394e454337d118ac3d40bfa3ee1a3cb3f3ed2\"\u003e\u003ccode\u003eaa8394e\u003c/code\u003e\u003c/a\u003e v7.29.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/84366a8ea453814e732784db74cf2e2b6635eb6f\"\u003e\u003ccode\u003e84366a8\u003c/code\u003e\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentP...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/229eb452c5d5d2be0dc138ec2956aff7ff1057d7\"\u003e\u003ccode\u003e229eb45\u003c/code\u003e\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/905bc22b2fff23673eabe467815c67b29bf8bba2\"\u003e\u003ccode\u003e905bc22\u003c/code\u003e\u003c/a\u003e fix: lint errors in main branch (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17612\"\u003e#17612\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a03e2b63ae530674e866b60350b7eb4a5fcb5f59\"\u003e\u003ccode\u003ea03e2b6\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003epath.evaluate\u003c/code\u003e correctly returns \u003ccode\u003econfident\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17584\"\u003e#17584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aac2c37e11ad58905f7f9606103074e80bacbbcd\"\u003e\u003ccode\u003eaac2c37\u003c/code\u003e\u003c/a\u003e chore: Use Gulpfile.mts (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17579\"\u003e#17579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/65c4a6b3ee0e1d32801529e841572bb22534e1f3\"\u003e\u003ccode\u003e65c4a6b\u003c/code\u003e\u003c/a\u003e [Babel 8] fix: Improve \u003ccode\u003etraverse\u003c/code\u003e types (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17574\"\u003e#17574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c92c4919771105140015167f25f7bacac77c90d9\"\u003e\u003ccode\u003ec92c491\u003c/code\u003e\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17589\"\u003e#17589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.0/packages/babel-traverse\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/traverse\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `picomatch` from 2.2.2 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/releases\"\u003epicomatch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.2\u003c/h2\u003e\n\u003cp\u003eThis is a security release fixing several security relevant issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: exception when glob pattern contains constructor by \u003ca href=\"https://github.com/Jason3S\"\u003e\u003ccode\u003e@​Jason3S\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/micromatch/picomatch/pull/144\"\u003emicromatch/picomatch#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj\"\u003eCVE-2026-33671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p\"\u003eCVE-2026-33672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ehttps://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e2.3.1\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes bug when a pattern containing an expression after the closing parenthesis (\u003ccode\u003e/!(*.d).{ts,tsx}\u003c/code\u003e) was incorrectly converted to regexp (\u003ca href=\"https://github.com/micromatch/picomatch/commit/9f241ef\"\u003e9f241ef\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSome documentation improvements (\u003ca href=\"https://github.com/micromatch/picomatch/commit/f81d236\"\u003ef81d236\u003c/a\u003e, \u003ca href=\"https://github.com/micromatch/picomatch/commit/421e0e7\"\u003e421e0e7\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.2.3\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not skip pattern seperator for square brackets (\u003ca href=\"https://github.com/micromatch/picomatch/commit/fb08a30\"\u003efb08a30\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eSet negatedExtGlob also if it does not span the whole pattern (\u003ca href=\"https://github.com/micromatch/picomatch/commit/032e3f5\"\u003e032e3f5\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md\"\u003epicomatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eAll notable changes to this project will be documented in this file.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e4.0.0 (2024-02-07)\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad text values in parse \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/126\"\u003e#126\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/connor4312\"\u003e\u003ccode\u003e@​connor4312\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove process global to work outside of node \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/129\"\u003e#129\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/styfle\"\u003e\u003ccode\u003e@​styfle\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sideEffects to package.json \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/128\"\u003e#128\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/frandiox\"\u003e\u003ccode\u003e@​frandiox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003eos\u003c/code\u003e, make compatible browser environment. See \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/124\"\u003e#124\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/gwsbhqt\"\u003e\u003ccode\u003e@​gwsbhqt\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.1\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/81cba8d4b767cab3cb29d26eb4f691eed75b73b2\"\u003e\u003ccode\u003e81cba8d\u003c/code\u003e\u003c/a\u003e Publish 2.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/fc1f6b69006e9435caf8fb40d8aff378bc0b7bce\"\u003e\u003ccode\u003efc1f6b6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/eec17aee5428a7249e9ca5adbb8a0d28fa29619b\"\u003e\u003ccode\u003eeec17ae\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/78f8ca4362d9e66cadea97b93e292f10096452ed\"\u003e\u003ccode\u003e78f8ca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/156\"\u003e#156\u003c/a\u003e from micromatch/backport-144\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/3f4f10eaa65bf3a52e8f2999674cd27e11fa3c9b\"\u003e\u003ccode\u003e3f4f10e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/144\"\u003e#144\u003c/a\u003e from Jason3S/jdent-object-properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/5467a5a9638472610de4f30709991b9a56bb5613\"\u003e\u003ccode\u003e5467a5a\u003c/code\u003e\u003c/a\u003e 2.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/9f241efedc15a21bcec1edafd43ee773ceb4bc35\"\u003e\u003ccode\u003e9f241ef\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/102\"\u003e#102\u003c/a\u003e from micromatch/ISSUE-93_incorrect_extglob_expanding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/ac3cb660ca76764627aa825676df59378dd60bcd\"\u003e\u003ccode\u003eac3cb66\u003c/code\u003e\u003c/a\u003e fix: support stars in negation extglobs with expression after closing parenth...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/719d348d8a01cf23c6c10568191c1ad5a3fc33e3\"\u003e\u003ccode\u003e719d348\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/85\"\u003e#85\u003c/a\u003e from XhmikosR/codeql\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/ac74e57b38a0d16de8e1752a62003e49c1622cec\"\u003e\u003ccode\u003eac74e57\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/91\"\u003e#91\u003c/a\u003e from XhmikosR/patch-1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.2.2...2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~danez\"\u003edanez\u003c/a\u003e, a new releaser for picomatch since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `braces` from 2.3.2 to 3.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/braces/blob/master/CHANGELOG.md\"\u003ebraces's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003eAll notable changes to this project will be documented in this file.\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e[3.0.0] - 2018-04-08\u003c/h2\u003e\n\u003cp\u003ev3.0 is a complete refactor, resulting in a faster, smaller codebase, with fewer deps, and a more accurate parser and compiler.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe undocumented \u003ccode\u003e.makeRe\u003c/code\u003e method was removed\u003c/li\u003e\n\u003cli\u003eRequire Node.js \u0026gt;= 8.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNon-breaking changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCaching was removed\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/micromatch/braces/commits/3.0.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/4419b6e73f21516c6d53ca4165cb7abb3d79ae24\"\u003e\u003ccode\u003e4419b6e\u003c/code\u003e\u003c/a\u003e 5.1.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/383ce59133bc582fce638f46cea59edf6b224753\"\u003e\u003ccode\u003e383ce59\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b02ef18f66329dc1d7bc8e37863a37b317c5b74e\"\u003e\u003ccode\u003eb02ef18\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/e92ae291a1e512f2d7ae13d6797b02315f68a40c\"\u003e\u003ccode\u003ee92ae29\u003c/code\u003e\u003c/a\u003e 5.1.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/79e44472e457ca43a3f2acebe19288a436db28c4\"\u003e\u003ccode\u003e79e4447\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/85ec0ff1bb34f2b200990140f4f9bdbaa8fb99aa\"\u003e\u003ccode\u003e85ec0ff\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/647146e67c1f47287a4b8d834e28c671c712d639\"\u003e\u003ccode\u003e647146e\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/85646c8f2739fdb0bc3b744606117a9d63f97c74\"\u003e\u003ccode\u003e85646c8\u003c/code\u003e\u003c/a\u003e 5.1.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/977c2d874aff7d416bf91c92b6aef7ab1f926f9b\"\u003e\u003ccode\u003e977c2d8\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/421ad1288bac5ef85e0f1b47155d85a69d753b79\"\u003e\u003ccode\u003e421ad12\u003c/code\u003e\u003c/a\u003e update test expectations for coalesced consecutive stars\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v5.1.6...v5.1.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `y18n` from 4.0.0 to 5.0.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yargs/y18n/releases\"\u003ey18n's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ey18n y18n-v4.0.3\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e 4.x.x should not enforce Node 10 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/126\"\u003e#126\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/1e21a536e9135d8403a47be88922157a706b7cde\"\u003e1e21a53\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ey18n y18n-v4.0.2\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e ensure entry exists for backport (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/120\"\u003e#120\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/b22c0df59d0851d7be9fd1d51f6a5ee974c9fc94\"\u003eb22c0df\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yargs/y18n/blob/master/CHANGELOG.md\"\u003ey18n's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.7...v5.0.8\"\u003e5.0.8\u003c/a\u003e (2021-04-07)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeno:\u003c/strong\u003e force modern release for Deno (\u003ca href=\"https://www.github.com/yargs/y18n/commit/b1c215aed714bee5830e76de3e335504dc2c4dab\"\u003eb1c215a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.6...v5.0.7\"\u003e5.0.7\u003c/a\u003e (2021-04-07)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeno:\u003c/strong\u003e force release for deno (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/121\"\u003e#121\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/d3f2560e6cedf2bfa2352e9eec044da53f9a06b2\"\u003ed3f2560\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.5...v5.0.6\"\u003e5.0.6\u003c/a\u003e (2021-04-05)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ewebpack:\u003c/strong\u003e skip readFileSync if not defined (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/117\"\u003e#117\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/6966fa91d2881cc6a6c531e836099e01f4da1616\"\u003e6966fa9\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.4...v5.0.5\"\u003e5.0.5\u003c/a\u003e (2020-10-25)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eaddress prototype pollution issue (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/108\"\u003e#108\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/a9ac604abf756dec9687be3843e2c93bfe581f25\"\u003ea9ac604\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.3...v5.0.4\"\u003e5.0.4\u003c/a\u003e (2020-10-16)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eexports:\u003c/strong\u003e node 13.0 and 13.1 require the dotted object form \u003cem\u003ewith\u003c/em\u003e a string fallback (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/105\"\u003e#105\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/4f85d80dbaae6d2c7899ae394f7ad97805df4886\"\u003e4f85d80\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.2...v5.0.3\"\u003e5.0.3\u003c/a\u003e (2020-10-16)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eexports:\u003c/strong\u003e node 13.0-13.6 require a string fallback (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/103\"\u003e#103\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/e39921e1017f88f5d8ea97ddea854ffe92d68e74\"\u003ee39921e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.1...v5.0.2\"\u003e5.0.2\u003c/a\u003e (2020-10-01)\u003c/h3\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeno:\u003c/strong\u003e update types for deno ^1.4.0 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/100\"\u003e#100\u003c/a\u003e) (\u003ca href=\"https://www.github.com/yargs/y18n/commit/3834d9ab1332f2937c935ada5e76623290efae81\"\u003e3834d9a\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ca href=\"https://www.github.com/yargs/y18n/compare/v5.0.0...v5.0.1\"\u003e5.0.1\u003c/a\u003e (2020-09-05)\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/58a9a3c715af18c5d2000eb0adb206cbbc28db82\"\u003e\u003ccode\u003e58a9a3c\u003c/code\u003e\u003c/a\u003e chore: release 5.0.8 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/129\"\u003e#129\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/b1c215aed714bee5830e76de3e335504dc2c4dab\"\u003e\u003ccode\u003eb1c215a\u003c/code\u003e\u003c/a\u003e fix(deno): force modern release for Deno\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/e73fb19fa1eaadfcce2e2a83ef021a29e3ee4f56\"\u003e\u003ccode\u003ee73fb19\u003c/code\u003e\u003c/a\u003e chore: release 5.0.7 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/123\"\u003e#123\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/d3f2560e6cedf2bfa2352e9eec044da53f9a06b2\"\u003e\u003ccode\u003ed3f2560\u003c/code\u003e\u003c/a\u003e fix(deno): force release for deno (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/121\"\u003e#121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/e9fda6155f5e86b02027c4c973b10d2b08e4f2df\"\u003e\u003ccode\u003ee9fda61\u003c/code\u003e\u003c/a\u003e chore: release 5.0.6 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/118\"\u003e#118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/6966fa91d2881cc6a6c531e836099e01f4da1616\"\u003e\u003ccode\u003e6966fa9\u003c/code\u003e\u003c/a\u003e fix(webpack): skip readFileSync if not defined (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/117\"\u003e#117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/c7555823e00deecfbed2c711ef250c3b877b46d5\"\u003e\u003ccode\u003ec755582\u003c/code\u003e\u003c/a\u003e docs: add entry for v4.0.1 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/114\"\u003e#114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/2d4c56cb45e98e384dbc90f43e0acfa223324024\"\u003e\u003ccode\u003e2d4c56c\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency standardx to v6 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/110\"\u003e#110\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/b64ae70b3cf3d6fd95206f5913a2b3f2b3524f9c\"\u003e\u003ccode\u003eb64ae70\u003c/code\u003e\u003c/a\u003e chore: release 5.0.5 (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/109\"\u003e#109\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yargs/y18n/commit/a9ac604abf756dec9687be3843e2c93bfe581f25\"\u003e\u003ccode\u003ea9ac604\u003c/code\u003e\u003c/a\u003e fix: address prototype pollution issue (\u003ca href=\"https://redirect.github.com/yargs/y18n/issues/108\"\u003e#108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/yargs/y18n/compare/v4.0.0...v5.0.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~oss-bot\"\u003eoss-bot\u003c/a\u003e, a new releaser for y18n since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 4.1.0 to 4.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/cc482e775913e6625137572a3712d2826170e53a\"\u003e\u003ccode\u003ecc482e7\u003c/code\u003e\u003c/a\u003e 4.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/50968b862e75866ef90e626572fe0b2f97b55f9f\"\u003e\u003ccode\u003e50968b8\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/d092d866031751cb27c12d93f3e2470ad74d678b\"\u003e\u003ccode\u003ed092d86\u003c/code\u003e\u003c/a\u003e lint fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879\"\u003e\u003ccode\u003e383665f\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/0d3ca7a27b03a6c974790a30a89e456007d62976\"\u003e\u003ccode\u003e0d3ca7a\u003c/code\u003e\u003c/a\u003e README.md: HTTP =\u0026gt; HTTPS (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/49baadd52af887d2991e2c39a6639baa56d6c71b\"\u003e\u003ccode\u003e49baadd\u003c/code\u003e\u003c/a\u003e doc: 'empty' style option for !!null\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/ba3460eb9d3e4478edcbc29edabe17c2157fc9ce\"\u003e\u003ccode\u003eba3460e\u003c/code\u003e\u003c/a\u003e Fix demo link (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/cc482e775913e6625137572a3712d2826170e53a\"\u003e\u003ccode\u003ecc482e7\u003c/code\u003e\u003c/a\u003e 4.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/50968b862e75866ef90e626572fe0b2f97b55f9f\"\u003e\u003ccode\u003e50968b8\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/d092d866031751cb27c12d93f3e2470ad74d678b\"\u003e\u003ccode\u003ed092d86\u003c/code\u003e\u003c/a\u003e lint fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879\"\u003e\u003ccode\u003e383665f\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/0d3ca7a27b03a6c974790a30a89e456007d62976\"\u003e\u003ccode\u003e0d3ca7a\u003c/code\u003e\u003c/a\u003e README.md: HTTP =\u0026gt; HTTPS (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/49baadd52af887d2991e2c39a6639baa56d6c71b\"\u003e\u003ccode\u003e49baadd\u003c/code\u003e\u003c/a\u003e doc: 'empty' style option for !!null\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/ba3460eb9d3e4478edcbc29edabe17c2157fc9ce\"\u003e\u003ccode\u003eba3460e\u003c/code\u003e\u003c/a\u003e Fix demo link (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://gith...\n\n_Description has been truncated_","html_url":"https://github.com/protonalialol/saltcorn/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/protonalialol%2Fsaltcorn/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-04-07T01:40:05.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"4214934308","node_id":"PR_kwDOP6o88s7QXA4G","number":12,"state":"open","title":"chore(deps): bump the npm_and_yarn group across 11 directories with 18 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-07T01:40:05.000Z","updated_at":"2026-04-07T01:44:47.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":18,"packages":[{"name":"electron","old_version":"30.5.1","new_version":"39.8.5","repository_url":"https://github.com/electron/electron"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"immutable","old_version":"4.3.7","new_version":"4.3.8","repository_url":"https://github.com/immutable-js/immutable-js"},{"name":"vite","old_version":"6.2.3","new_version":"6.4.2","repository_url":"https://github.com/vitejs/vite"},{"name":"yaml","old_version":"2.6.0","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"},{"name":"svelte","old_version":"4.2.19","new_version":"5.53.5","repository_url":"https://github.com/sveltejs/svelte"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.13","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"flatted","old_version":"3.3.3","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"qs","old_version":"6.14.0","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 13 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [electron](https://github.com/electron/electron) | `30.5.1` | `39.8.5` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [immutable](https://github.com/immutable-js/immutable-js) | `4.3.7` | `4.3.8` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `6.2.3` | `6.4.2` |\n| [yaml](https://github.com/eemeli/yaml) | `2.6.0` | `2.8.3` |\n| [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) | `4.2.19` | `5.53.5` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.13` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [qs](https://github.com/ljharb/qs) | `6.14.0` | `6.15.0` |\n\nBumps the npm_and_yarn group with 4 updates in the /packages/playwright-core/bundles/utils directory: [yaml](https://github.com/eemeli/yaml), [brace-expansion](https://github.com/juliangruber/brace-expansion), [minimatch](https://github.com/isaacs/minimatch) and [diff](https://github.com/kpdecker/jsdiff).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-ct-core directory: [playwright](https://github.com/microsoft/playwright).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-ct-svelte directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-test directory: [playwright](https://github.com/microsoft/playwright).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-react-vite directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-svelte directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 2 updates in the /tests/components/ct-svelte-vite directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) and [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-vue-vite directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /tests/playwright-test/stable-test-runner directory: [playwright](https://github.com/microsoft/playwright).\nBumps the npm_and_yarn group with 2 updates in the /utils/flakiness-dashboard directory: [form-data](https://github.com/form-data/form-data) and [jws](https://github.com/brianloveswords/node-jws).\n\nUpdates `electron` from 30.5.1 to 39.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/electron/electron/releases\"\u003eelectron's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eelectron v39.8.5\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.5\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a crash in \u003ccode\u003eclipboard.readImage()\u003c/code\u003e when the clipboard contains malformed image data. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50493\"\u003e#50493\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50491\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50492\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50494\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed a crash when calling an offscreen shared texture's \u003ccode\u003erelease()\u003c/code\u003e after the texture object was garbage collected. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50499\"\u003e#50499\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50500\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50501\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50502\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.4\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.4\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003enodeIntegrationInWorker\u003c/code\u003e overrides in \u003ccode\u003esetWindowOpenHandler\u003c/code\u003e were not honored for child windows sharing a renderer process with their opener. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50468\"\u003e#50468\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50163\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50467\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50134\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed crash when handling JavaScript dialogs from windows opened with invalid or empty URLs. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50400\"\u003e#50400\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50401\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50399\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50398\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed improper focus tracking in BaseWindow on MacOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50338\"\u003e#50338\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50337\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50340\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50339\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed window freeze when failing to enter/exit fullscreen on macOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50341\"\u003e#50341\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50344\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50343\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50342\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for using a proxy during yarn install. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50349\"\u003e#50349\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50352\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50350\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50351\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 485935305. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50440\"\u003e#50440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 489381399. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50443\"\u003e#50443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for chromium:475877320. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50436\"\u003e#50436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fixes for 484751092, 487117772. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50461\"\u003e#50461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.3\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.3\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded additional ASAR support to additional \u003ccode\u003efs\u003c/code\u003e copy methods. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50284\"\u003e#50284\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50287\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50286\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50285\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed user resizing of transparent windows on win32 platform. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50300\"\u003e#50300\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50301\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50298\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50299\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.2\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.2\u003c/h1\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackported fix for b/491421267. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50230\"\u003e#50230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.1\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.1\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded validation to protocol client methods to reject protocol names that do not conform to the RFC 3986 URI scheme grammar. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50156\"\u003e#50156\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50157\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50158\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50155\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue on macOS where calling \u003ccode\u003eautoUpdater.quitAndInstall()\u003c/code\u003e could fail if \u003ccode\u003echeckForUpdates()\u003c/code\u003e was called again after an update was already downloaded. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50215\"\u003e#50215\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50216\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50217\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where Chrome Devtools menus may not appear in certain embedded windows. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50136\"\u003e#50136\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50138\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50137\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003eadditionalData\u003c/code\u003e passed to \u003ccode\u003eapp.requestSingleInstanceLock\u003c/code\u003e on Windows could be truncated or fail to deserialize in the primary instance's \u003ccode\u003esecond-instance\u003c/code\u003e event. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50174\"\u003e#50174\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50177\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50162\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50154\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003escreen.getCursorScreenPoint()\u003c/code\u003e crashed on Wayland when it was called before a \u003ccode\u003eBrowserWindow\u003c/code\u003e had been created. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50106\"\u003e#50106\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50104\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50105\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/9d2f8cb4da0d35e2daf7e7f60e35313b508cb224\"\u003e\u003ccode\u003e9d2f8cb\u003c/code\u003e\u003c/a\u003e refactor: remove dead named-window lookup from guest-window-manager (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50498\"\u003e#50498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/11730047394233e70743c52567e17f4c3b2dc9fc\"\u003e\u003ccode\u003e1173004\u003c/code\u003e\u003c/a\u003e fix: crash calling OSR shared texture release() after texture GC'd (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50499\"\u003e#50499\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/be37adefd08f882e3f1fb8403d2d9e92c3009d56\"\u003e\u003ccode\u003ebe37ade\u003c/code\u003e\u003c/a\u003e fix: crash in clipboard.readImage() on malformed image data (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50493\"\u003e#50493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/7007907df08d02da98f513dcbdb430ab51be59c7\"\u003e\u003ccode\u003e7007907\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 3 changes from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50461\"\u003e#50461\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/2c8b6ee0c0a7c26871dc0b320982afd8ed29df6c\"\u003e\u003ccode\u003e2c8b6ee\u003c/code\u003e\u003c/a\u003e chore: cherry-pick fbfb27470bf6 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50436\"\u003e#50436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/4c64377ead6b53bc565d7793a2712e49882e5354\"\u003e\u003ccode\u003e4c64377\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 50b057660b4d from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50440\"\u003e#50440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/0ef056130cde0c19c81ccfbc2932df6911765849\"\u003e\u003ccode\u003e0ef0561\u003c/code\u003e\u003c/a\u003e fix: read nodeIntegrationInWorker from per-frame WebPreferences (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50122\"\u003e#50122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50\"\u003e#50\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/64373df3ca697bc6fe6e3ab1f463ba05beaf64cf\"\u003e\u003ccode\u003e64373df\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 074d472db745 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50443\"\u003e#50443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/13e44072be367f516cfad36f95d183765174f4bf\"\u003e\u003ccode\u003e13e4407\u003c/code\u003e\u003c/a\u003e fix: don't re-parse URL unnecessarily when handling dialogs (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50400\"\u003e#50400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/16a038502a4ea0c79976be60bcc8f28a49f1ab99\"\u003e\u003ccode\u003e16a0385\u003c/code\u003e\u003c/a\u003e ci: output build cache hit rate as GHA annotation (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50369\"\u003e#50369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/electron/electron/compare/v30.5.1...v39.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 2.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `immutable` from 4.3.7 to 4.3.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/immutable-js/immutable-js/releases\"\u003eimmutable's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.3.8\u003c/h2\u003e\n\u003cp\u003eFix Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in immutable\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/immutable-js/immutable-js/blob/main/CHANGELOG.md\"\u003eimmutable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003cp\u003eAll notable changes to this project will be documented in this file.\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"https://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e,\nand this project adheres to \u003ca href=\"https://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\nDates are formatted as YYYY-MM-DD.\u003c/p\u003e\n\u003ch2\u003eUnreleased\u003c/h2\u003e\n\u003ch2\u003e5.1.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in immutable\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMigrate some files to TS by \u003ca href=\"https://github.com/jdeniau\"\u003e\u003ccode\u003e@​jdeniau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2125\"\u003eimmutable-js/immutable-js#2125\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eIterator.ts\u003c/li\u003e\n\u003cli\u003ePairSorting.ts\u003c/li\u003e\n\u003cli\u003etoJS.ts\u003c/li\u003e\n\u003cli\u003eMath.ts\u003c/li\u003e\n\u003cli\u003eHash.ts\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eExtract CollectionHelperMethods and convert to TS by \u003ca href=\"https://github.com/jdeniau\"\u003e\u003ccode\u003e@​jdeniau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2131\"\u003eimmutable-js/immutable-js#2131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse npm \u003ca href=\"https://docs.npmjs.com/trusted-publishers\"\u003etrusted publishing only\u003c/a\u003e to avoid token stealing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix/a11y issues by \u003ca href=\"https://github.com/lyannel\"\u003e\u003ccode\u003e@​lyannel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2136\"\u003eimmutable-js/immutable-js#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc add Map.get signature update by \u003ca href=\"https://github.com/borracciaBlu\"\u003e\u003ccode\u003e@​borracciaBlu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2138\"\u003eimmutable-js/immutable-js#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(doc):minor-issues#2132 by \u003ca href=\"https://github.com/JayMeDotDot\"\u003e\u003ccode\u003e@​JayMeDotDot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2133\"\u003eimmutable-js/immutable-js#2133\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix algolia search by \u003ca href=\"https://github.com/jdeniau\"\u003e\u003ccode\u003e@​jdeniau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2135\"\u003eimmutable-js/immutable-js#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTypo in OrderedMap by \u003ca href=\"https://github.com/jdeniau\"\u003e\u003ccode\u003e@​jdeniau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2144\"\u003eimmutable-js/immutable-js#2144\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore: Sort all imports and activate eslint import rule by \u003ca href=\"https://github.com/jdeniau\"\u003e\u003ccode\u003e@​jdeniau\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2119\"\u003eimmutable-js/immutable-js#2119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.3\u003c/h2\u003e\n\u003ch3\u003eTypeScript\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: allow readonly map entry constructor by \u003ca href=\"https://github.com/septs\"\u003e\u003ccode\u003e@​septs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/immutable-js/immutable-js/pull/2123\"\u003eimmutable-js/immutable-js#2123\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cp\u003eThere has been a huge amount of changes in the documentation, mainly migrate from an autogenerated documentation from .d.ts file, to a proper documentation in markdown.\nThe playground has been included on nearly all method examples.\nWe added a page about browser extensions too: \u003ca href=\"https://immutable-js.com/browser-extension/\"\u003ehttps://immutable-js.com/browser-extension/\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immutable-js/immutable-js/commit/485cbe0edf3ca7bb4b9c4a80ac55ba937a291da0\"\u003e\u003ccode\u003e485cbe0\u003c/code\u003e\u003c/a\u003e 4.3.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immutable-js/immutable-js/commit/6ed4eb626906df788b08019061b292b90bc718cb\"\u003e\u003ccode\u003e6ed4eb6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immutable-js/immutable-js/commit/94bcd3c79972db4afffd8d1e5aab415880098b05\"\u003e\u003ccode\u003e94bcd3c\u003c/code\u003e\u003c/a\u003e fix new proto key injection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/immutable-js/immutable-js/commit/faeb58b0cc71ed351dc51f672a95ae21bc859ef5\"\u003e\u003ccode\u003efaeb58b\u003c/code\u003e\u003c/a\u003e fix Prototype Pollution in mergeDeep, toJS, etc.\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/immutable-js/immutable-js/compare/v4.3.7...v4.3.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for immutable since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 6.2.3 to 6.4.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.4.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v6.4.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev6.4.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v6.4.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev6.4.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v6.4.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev6.3.7\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v6.3.7/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev6.3.6\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v6.3.6/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/v6.4.2/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.4.2 (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22163\"\u003e#22163\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/fe28e47e9463e4c9619f94bfa06d2f8f1411b44b\"\u003efe28e47\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22163\"\u003e#22163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/ca4da5d1fb45c9cfdce606aa30825095791b164b\"\u003eca4da5d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.4.1 (2025-10-20)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(dev): trim trailing slash before \u003ccode\u003eserver.fs.deny\u003c/code\u003e check (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20968\"\u003e#20968\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20969\"\u003e#20969\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/1114b5d7ea03e26572708715343bec69db4536e8\"\u003e1114b5d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20968\"\u003e#20968\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20969\"\u003e#20969\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.4.0 (2025-10-15)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: allow passing down resolved config to vite's createServer (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20932\"\u003e#20932\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/ca6455ee9eb6111a9caa9810506a1b9ac96a520a\"\u003eca6455e\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20932\"\u003e#20932\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.3.7 (2025-10-14)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(esbuild): inject esbuild helpers correctly for esbuild 0.25.9+ (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20940\"\u003e#20940\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/c59a222aa584c087cfe710173de1b9ecb597a3ff\"\u003ec59a222\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20940\"\u003e#20940\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.3.6 (2025-09-08)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: apply \u003ccode\u003efs.strict\u003c/code\u003e check to HTML files (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20736\"\u003e#20736\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/0ab19ea9fcb66f544328f442cf6e70f7c0528d5f\"\u003e0ab19ea\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20736\"\u003e#20736\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: upgrade sirv to 3.0.2 (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20735\"\u003e#20735\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/e11d24008b97d4ca731ecc1a3b95260a6d12e7e0\"\u003ee11d240\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20735\"\u003e#20735\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: detect ts support via \u003ccode\u003eprocess.features\u003c/code\u003e (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20544\"\u003e#20544\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/7d9922972b62329d37a71d4da5a4a382d0bf8a79\"\u003e7d99229\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20544\"\u003e#20544\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.3.5 (2025-05-05)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(ssr): handle uninitialized export access as undefined (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19959\"\u003e#19959\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/fd38d076fe2455aac1e00a7b15cd51159bf12bb5\"\u003efd38d07\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19959\"\u003e#19959\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.3.4 (2025-04-30)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: check static serve file inside sirv (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19965\"\u003e#19965\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/c22c43de612eebb6c182dd67850c24e4fab8cacb\"\u003ec22c43d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19965\"\u003e#19965\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(optimizer): return plain object when using \u003ccode\u003erequire\u003c/code\u003e to import externals in optimized dependenci (\u003ca href=\"https://github.com/vitejs/vite/commit/efc5eab253419fde0a6a48b8d2f233063d6a9643\"\u003eefc5eab\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19940\"\u003e#19940\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: remove duplicate plugin context type (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19935\"\u003e#19935\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/d6d01c2292fa4f9603e05b95d81c8724314c20e0\"\u003ed6d01c2\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19935\"\u003e#19935\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e6.3.3 (2025-04-24)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: ignore malformed uris in tranform middleware (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19853\"\u003e#19853\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/e4d520141bcd83ad61f16767348b4a813bf9340a\"\u003ee4d5201\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19853\"\u003e#19853\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/6b3fad02abd550bd7b79934ff92c58dbd7f33045\"\u003e\u003ccode\u003e6b3fad0\u003c/code\u003e\u003c/a\u003e release: v6.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/ca4da5d1fb45c9cfdce606aa30825095791b164b\"\u003e\u003ccode\u003eca4da5d\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/fe28e47e9463e4c9619f94bfa06d2f8f1411b44b\"\u003e\u003ccode\u003efe28e47\u003c/code\u003e\u003c/a\u003e fix: apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22163\"\u003e#22163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/5487f4f641f70c47ea05fd101a4319897df048b3\"\u003e\u003ccode\u003e5487f4f\u003c/code\u003e\u003c/a\u003e release: v6.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/1114b5d7ea03e26572708715343bec69db4536e8\"\u003e\u003ccode\u003e1114b5d\u003c/code\u003e\u003c/a\u003e fix(dev): trim trailing slash before \u003ccode\u003eserver.fs.deny\u003c/code\u003e check (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20968\"\u003e#20968\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20969\"\u003e#20969\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f12697c0f64b9a37196b9ab218a0911829d5b103\"\u003e\u003ccode\u003ef12697c\u003c/code\u003e\u003c/a\u003e release: v6.4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/ca6455ee9eb6111a9caa9810506a1b9ac96a520a\"\u003e\u003ccode\u003eca6455e\u003c/code\u003e\u003c/a\u003e feat: allow passing down resolved config to vite's createServer (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20932\"\u003e#20932\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/0e173d83681daa31be10fa8a62d56b1ec84690af\"\u003e\u003ccode\u003e0e173d8\u003c/code\u003e\u003c/a\u003e release: v6.3.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/c59a222aa584c087cfe710173de1b9ecb597a3ff\"\u003e\u003ccode\u003ec59a222\u003c/code\u003e\u003c/a\u003e fix(esbuild): inject esbuild helpers correctly for esbuild 0.25.9+ (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20940\"\u003e#20940\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/3f337c5e24504e51188d29c970de1416ee523dbb\"\u003e\u003ccode\u003e3f337c5\u003c/code\u003e\u003c/a\u003e release: v6.3.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vitejs/vite/commits/v6.4.2/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for vite since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `yaml` from 2.6.0 to 2.8.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/eemeli/yaml/releases\"\u003eyaml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.8.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003etrailingComma\u003c/code\u003e ToString option for multiline flow formatting (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/670\"\u003e#670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCatch stack overflow during node composition (1e84ebb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.8.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSerialize -0 as -0 (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/638\"\u003e#638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDo not double newlines for empty map values (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/642\"\u003e#642\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.8.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePreserve empty block literals (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/634\"\u003e#634\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd node cache for faster alias resolution (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/612\"\u003e#612\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRe-introduce compatibility with Node.js 14.6 (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/614\"\u003e#614\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e--merge\u003c/code\u003e option to CLI tool (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/611\"\u003e#611\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove error for tag resolution error on null value (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/616\"\u003e#616\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAllow empty string as plain scalar representation, for failsafe schema (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/616\"\u003e#616\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edocs: include cli example (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/617\"\u003e#617\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDo not allow seq with single-line collection value on same line with map key (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/603\"\u003e#603\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove warning \u0026amp; avoid TypeError on bad YAML 1.1 nodes (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/610\"\u003e#610\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.7.0\u003c/h2\u003e\n\u003cp\u003eThe library is now available on JSR as \u003ca href=\"https://jsr.io/@eemeli/yaml\"\u003e\u003ccode\u003e@​eemeli/yaml\u003c/code\u003e\u003c/a\u003e and on deno.land/x as \u003ca href=\"https://deno.land/x/yaml\"\u003eyaml\u003c/a\u003e. In addition to Node.js and browsers, it should work in Deno, Bun, and Cloudflare Workers.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUse .ts extension in all relative imports (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/591\"\u003e#591\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eIgnore newline after block seq indicator as space before value (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/590\"\u003e#590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRequire Node.js 14.18 or later (was 14.6) (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/598\"\u003e#598\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDo not strip \u003ccode\u003e:00\u003c/code\u003e seconds from \u003ccode\u003e!!timestamp\u003c/code\u003e values (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/578\"\u003e#578\u003c/a\u003e, with thanks to \u003ca href=\"https://github.com/qraynaud\"\u003e\u003ccode\u003e@​qraynaud\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eTighten regexp for JSON \u003ccode\u003e!!bool\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/587\"\u003e#587\u003c/a\u003e, with thanks to \u003ca href=\"https://github.com/vra5107\"\u003e\u003ccode\u003e@​vra5107\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDefault to literal block scalar if folded would overflow (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/585\"\u003e#585\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/ce14587484822bffb0f7d31aefedcaf2dc0d0387\"\u003e\u003ccode\u003ece14587\u003c/code\u003e\u003c/a\u003e 2.8.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/1e84ebbea7ec35011a4c61bbb820a529ee4f359b\"\u003e\u003ccode\u003e1e84ebb\u003c/code\u003e\u003c/a\u003e fix: Catch stack overflow during node composition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/6b24090280eaaab5040112bba41ccef57f39c2d5\"\u003e\u003ccode\u003e6b24090\u003c/code\u003e\u003c/a\u003e ci: Include Prettier check in lint action\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/9424dee38c85163fad53ac27533c7c4bdaf7495d\"\u003e\u003ccode\u003e9424dee\u003c/code\u003e\u003c/a\u003e chore: Refresh lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/d1aca82bc15a4c261bdc58561d32189a5d3a45ef\"\u003e\u003ccode\u003ed1aca82\u003c/code\u003e\u003c/a\u003e Add trailingComma ToString option for multiline flow formatting (\u003ca href=\"https://redirect.github.com/eemeli/yaml/issues/670\"\u003e#670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/43215099f7fcdac422d778c15e70d83c691b0e41\"\u003e\u003ccode\u003e4321509\u003c/code\u003e\u003c/a\u003e ci: Drop the branch filter from GitHub PR actions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/47207d0fc7d4f863cd5fbdcff1378637bd93e847\"\u003e\u003ccode\u003e47207d0\u003c/code\u003e\u003c/a\u003e chore: Update docs-slate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/5212faeed5936d1fa291d2f28672e4a96e2c2c5d\"\u003e\u003ccode\u003e5212fae\u003c/code\u003e\u003c/a\u003e chore: Update docs-slate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/086fa6b5bae325da18734750cddee231ce578930\"\u003e\u003ccode\u003e086fa6b\u003c/code\u003e\u003c/a\u003e 2.8.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eemeli/yaml/commit/95f01e98032ddf199b42bb3ba0737303b35ef752\"\u003e\u003ccode\u003e95f01e9\u003c/code\u003e\u003c/a\u003e chore: Add funding to package.json\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/eemeli/yaml/compare/v2.6.0...v2.8.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `svelte` from 4.2.19 to 5.53.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/releases\"\u003esvelte's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esvelte@5.53.5\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: escape \u003ccode\u003einnerText\u003c/code\u003e and \u003ccode\u003etextContent\u003c/code\u003e bindings of \u003ccode\u003econtenteditable\u003c/code\u003e (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0df5abcae223058ceb95491470372065fb87951d\"\u003e\u003ccode\u003e0df5abcae223058ceb95491470372065fb87951d\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: sanitize \u003ccode\u003etransformError\u003c/code\u003e values prior to embedding in HTML comments (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0298e979371bb583855c9810db79a70a551d22b9\"\u003e\u003ccode\u003e0298e979371bb583855c9810db79a70a551d22b9\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.4\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: set server context after async transformError (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17799\"\u003e#17799\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: hydrate if blocks correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17784\"\u003e#17784\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle default parameters scope leaks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17788\"\u003e#17788\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent flushed effects from running again (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17787\"\u003e#17787\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: render \u003ccode\u003e:catch\u003c/code\u003e of \u003ccode\u003e#await\u003c/code\u003e block with correct key (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17769\"\u003e#17769\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003echore: pin aria-query@5.3.1 (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17772\"\u003e#17772\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: make string coercion consistent to \u003ccode\u003etoString\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17774\"\u003e#17774\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: update expressions on server deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17767\"\u003e#17767\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: further obfuscate \u003ccode\u003enode:crypto\u003c/code\u003e import from overzealous static analysis (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17763\"\u003e#17763\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle shadowed function names correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17753\"\u003e#17753\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efeat: allow comments in tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17671\"\u003e#17671\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efeat: allow error boundaries to work on the server (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17672\"\u003e#17672\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: use TrustedHTML to test for customizable \u003c!-- raw HTML omitted --\u003e support, where necessary (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17743\"\u003e#17743\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md\"\u003esvelte's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.53.5\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: escape \u003ccode\u003einnerText\u003c/code\u003e and \u003ccode\u003etextContent\u003c/code\u003e bindings of \u003ccode\u003econtenteditable\u003c/code\u003e (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0df5abcae223058ceb95491470372065fb87951d\"\u003e\u003ccode\u003e0df5abcae223058ceb95491470372065fb87951d\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: sanitize \u003ccode\u003etransformError\u003c/code\u003e values prior to embedding in HTML comments (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0298e979371bb583855c9810db79a70a551d22b9\"\u003e\u003ccode\u003e0298e979371bb583855c9810db79a70a551d22b9\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.4\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: set server context after async transformError (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17799\"\u003e#17799\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: hydrate if blocks correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17784\"\u003e#17784\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle default parameters scope leaks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17788\"\u003e#17788\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent flushed effects from running again (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17787\"\u003e#17787\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: render \u003ccode\u003e:catch\u003c/code\u003e of \u003ccode\u003e#await\u003c/code\u003e block with correct key (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17769\"\u003e#17769\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003echore: pin aria-query@5.3.1 (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17772\"\u003e#17772\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: make string coercion consistent to \u003ccode\u003etoString\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17774\"\u003e#17774\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: update expressions on server deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17767\"\u003e#17767\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: further obfuscate \u003ccode\u003enode:crypto\u003c/code\u003e import from overzealous static analysis (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17763\"\u003e#17763\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle shadowed function names correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17753\"\u003e#17753\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat: allow comments in tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17671\"\u003e#17671\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/ed14b499d6ea6821b5e8f81a723164eb8198dfa9\"\u003e\u003ccode\u003eed14b49\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17802\"\u003e#17802\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0df5abcae223058ceb95491470372065fb87951d\"\u003e\u003ccode\u003e0df5abc\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0298e979371bb583855c9810db79a70a551d22b9\"\u003e\u003ccode\u003e0298e97\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/96fd3ce763525ce6276520ca605dba5ece74ae93\"\u003e\u003ccode\u003e96fd3ce\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17786\"\u003e#17786\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/1b3e6605190ab8ca21292ddd3ccf2a71387d79fe\"\u003e\u003ccode\u003e1b3e660\u003c/code\u003e\u003c/a\u003e fix: prevent flushed effects from running again (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17787\"\u003e#17787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/673a1ab9643644fe31beda33eacfdec9ee1f2668\"\u003e\u003ccode\u003e673a1ab\u003c/code\u003e\u003c/a\u003e fix: set server context after async transformError (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17799\"\u003e#17799\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/3a289797bd205182e7677f58daf472caf537afc2\"\u003e\u003ccode\u003e3a28979\u003c/code\u003e\u003c/a\u003e fix: handle default parameters scope leaks (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17788\"\u003e#17788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/fcdc0289db5e6b0f7cf68cd3988450dad567392f\"\u003e\u003ccode\u003efcdc028\u003c/code\u003e\u003c/a\u003e fix: hydrate if blocks correctly (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17784\"\u003e#17784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/97f3ac557158dd7754264dfe735ed83c2ce95e1f\"\u003e\u003ccode\u003e97f3ac5\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17775\"\u003e#17775\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/7deedc5bb4fd6d0f033d00fa9741c7141fffd730\"\u003e\u003ccode\u003e7deedc5\u003c/code\u003e\u003c/a\u003e fix: render \u003ccode\u003e:catch\u003c/code\u003e of \u003ccode\u003e#await\u003c/code\u003e block with correct key (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17769\"\u003e#17769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sveltejs/svelte/commits/svelte@5.53.5/packages/svelte\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for svelte since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.13\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/6c353caf23beb9644f858eb3fe38d43a68b82898\"\u003e\u003ccode\u003e6c353ca\u003c/code\u003e\u003c/a\u003e 1.1.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/7fd684f89fdde3549563d0a6522226a9189472a2\"\u003e\u003ccode\u003e7fd684f\u003c/code\u003e\u003c/a\u003e Backport fix for GHSA-f886-m6hf-6m8v (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/95\"\u003e#95\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `picomatch` from 2.3.1 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/releases\"\u003epicomatch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.2\u003c/h2\u003e\n\u003cp\u003eThis is a security release fixing several security relevant issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: exception when glob pattern contains constructor by \u003ca href=\"https://github.com/Jason3S\"\u003e\u003ccode\u003e@​Jason3S\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/micromatch/picomatch/pull/144\"\u003emicromatch/picomatch#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj\"\u003eCVE-2026-33671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p\"\u003eCVE-2026-33672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ehttps://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md\"\u003epicomatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eAll notable changes to this project will be documented in this file.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e4.0.0 (2024-02-07)\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad text values in parse \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/126\"\u003e#126\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/connor4312\"\u003e\u003ccode\u003e@​connor4312\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove process global to work outside of node \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/129\"\u003e#129\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/styfle\"\u003e\u003ccode\u003e@​styfle\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sideEffects to package.json \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/128\"\u003e#128\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/frandiox\"\u003e\u003ccode\u003e@​frandiox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003eos\u003c/code\u003e, make compatible browser environment. See \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/124\"\u003e#124\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/gwsbhqt\"\u003e\u003ccode\u003e@​gwsbhqt\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.1\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/81cba8d4b767cab3cb29d26eb4f691eed75b73b2\"\u003e\u003ccode\u003e81cba8d\u003c/code\u003e\u003c/a\u003e Publish 2.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/fc1f6b69006e9435caf8fb40d8aff378bc0b7bce\"\u003e\u003ccode\u003efc1f6b6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/eec17aee5428a7249e9ca5adbb8a0d28fa29619b\"\u003e\u003ccode\u003eeec17ae\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/78f8ca4362d9e66cadea97b93e292f10096452ed\"\u003e\u003ccode\u003e78f8ca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/156\"\u003e#156\u003c/a\u003e from micromatch/backport-144\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/3f4f10eaa65bf3a52e8f2999674cd27e11fa3c9b\"\u003e\u003ccode\u003e3f4f10e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/144\"\u003e#144\u003c/a\u003e from Jason3S/jdent-object-properties\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `flatted` from 3.3.3 to 3.4.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/3bf09091c3562e17a0647bc06710dd6097079cf7\"\u003e\u003ccode\u003e3bf0909\u003c/code\u003e\u003c/a\u003e 3.4.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/885ddcc33cf9657caf38c57c7be45ae1c5272802\"\u003e\u003ccode\u003e885ddcc\u003c/code\u003e\u003c/a\u003e fix CWE-1321\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/0bdba705d130f00892b1b8fcc80cf4cdea0631e3\"\u003e\u003ccode\u003e0bdba70\u003c/code\u003e\u003c/a\u003e added flatted-view to the benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/2a02dce7c641dec31194c67663f9b0b12e62da20\"\u003e\u003ccode\u003e2a02dce\u003c/code\u003e\u003c/a\u003e 3.4.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/fba4e8f2e113665da275b19cd0f695f3d98e9416\"\u003e\u003ccode\u003efba4e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/WebReflection/flatted/issues/89\"\u003e#89\u003c/a\u003e from WebReflection/python-fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/5fe86485e6df7f7f34a07a2a85498bd3e17384e7\"\u003e\u003ccode\u003e5fe8648\u003c/code\u003e\u003c/a\u003e added \u0026quot;when in Rome\u0026quot; also a test for PHP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/53517adbefe724fe472b2f9ebcdb01910d0ae3f0\"\u003e\u003ccode\u003e53517ad\u003c/code\u003e\u003c/a\u003e some minor improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/b3e2a0c387bf446435fec45ad7f05299f012346f\"\u003e\u003ccode\u003eb3e2a0c\u003c/code\u003e\u003c/a\u003e Fixing recursion issue in Python too\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/c4b46dbcbf782326e54ea1b65d3ebb1dc7a23fad\"\u003e\u003ccode\u003ec4b46db\u003c/code\u003e\u003c/a\u003e Add SECURITY.md for security policy and reporting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/WebReflection/flatted/commit/f86d071e0f70de5a7d8200198824a3f07fc9c988\"\u003e\u003ccode\u003ef86d071\u003c/code\u003e\u003c/a\u003e Create dependabot.yml for version updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/WebReflection/flatted/compare/v3.3.3...v3.4.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 4.1.0 to 4.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/cc482e775913e6625137572a3712d2826170e53a\"\u003e\u003ccode\u003ecc482e7\u003c/code\u003e\u003c/a\u003e 4.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/50968b862e75866ef90e626572fe0b2f97b55f9f\"\u003e\u003ccode\u003e50968b8\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/d092d866031751cb27c12d93f3e2470ad74d678b\"\u003e\u003ccode\u003ed092d86\u003c/code\u003e\u003c/a\u003e lint fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879\"\u003e\u003ccode\u003e383665f\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/0d3ca7a27b03a6c974790a30a89e456007d62976\"\u003e\u003ccode\u003e0d3ca7a\u003c/code\u003e\u003c/a\u003e README.md: HTTP =\u0026gt; HTTPS (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/49baadd52af887d2991e2c39a6639baa56d6c71b\"\u003e\u003ccode\u003e49baadd\u003c/code\u003e\u003c/a\u003e doc: 'empty' style option for !!null\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/ba3460eb9d3e4478edcbc29edabe17c2157fc9ce\"\u003e\u003ccode\u003eba3460e\u003c/code\u003e\u003c/a\u003e Fix demo link (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/lodash/lodash/releases\"\u003elodash's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e4.18.1\u003c/h2\u003e\n\u003ch2\u003eBugs\u003c/h2\u003e\n\u003cp\u003eFixes a \u003ccode\u003eReferenceError\u003c/code\u003e issue in \u003ccode\u003elodash\u003c/code\u003e \u003ccode\u003elodash-es\u003c/code\u003e \u003ccode\u003elodash-amd\u003c/code\u003e and \u003ccode\u003elodash.template\u003c/code\u003e when using the \u003ccode\u003etemplate\u003c/code\u003e and \u003ccode\u003efromPairs\u003c/code\u003e functions from the modular builds. See \u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6167#issuecomment-4165269769\"\u003elodash/lodash#6167\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThese defects were related to how lodash distributions are built from the main branch using \u003ca href=\"https://github.com/lodash-archive/lodash-cli\"\u003ehttps://github.com/lodash-archive/lodash-cli\u003c/a\u003e. When internal dependencies change inside lodash functions, equivalent updates need to be made to a mapping in the lodash-cli. (hey, it was ahead of its time once upon a time!). We know this, but we missed it in the last release. It's the kind of thing that passes in CI, but fails bc the build is not the same thing you tested.\u003c/p\u003e\n\u003cp\u003eThere is no diff on main for this, but you can see the diffs for each of the npm packages on their respective branches:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003elodash\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm...4.18.1-npm\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-es\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-es...4.18.1-es\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash-amd\u003c/code\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-amd...4.18.1-amd\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003elodash.template\u003c/code\u003e\u003ca href=\"https://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\"\u003ehttps://github.com/lodash/lodash/compare/4.18.0-npm-packages...4.18.1-npm-packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.18.0\u003c/h2\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.23...4.18.0\"\u003ehttps://github.com/lodash/lodash/compare/4.17.23...4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.unset\u003c/code\u003e / \u003ccode\u003e_.omit\u003c/code\u003e\u003c/strong\u003e: Fixed prototype pollution via \u003ccode\u003econstructor\u003c/code\u003e/\u003ccode\u003eprototype\u003c/code\u003e path traversal (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-f23m-r3pf-42rh\"\u003eGHSA-f23m-r3pf-42rh\u003c/a\u003e, \u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003efe8d32e\u003c/a\u003e). Previously, array-wrapped path segments and primitive roots could bypass the existing guards, allowing deletion of properties from built-in prototypes. Now \u003ccode\u003econstructor\u003c/code\u003e and \u003ccode\u003eprototype\u003c/code\u003e are blocked unconditionally as non-terminal path keys, matching \u003ccode\u003ebaseSet\u003c/code\u003e. Calls that previously returned \u003ccode\u003etrue\u003c/code\u003e and deleted the property now return \u003ccode\u003efalse\u003c/code\u003e and leave the target untouched.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003e_.template\u003c/code\u003e\u003c/strong\u003e: Fixed code injection via \u003ccode\u003eimports\u003c/code\u003e keys (\u003ca href=\"https://github.com/lodash/lodash/security/advisories/GHSA-r5fr-rjxr-66jc\"\u003eGHSA-r5fr-rjxr-66jc\u003c/a\u003e, CVE-2026-4800, \u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e879aaa9\u003c/a\u003e). Fixes an incomplete patch for CVE-2021-23337. The \u003ccode\u003evariable\u003c/code\u003e option was validated against \u003ccode\u003ereForbiddenIdentifierChars\u003c/code\u003e but \u003ccode\u003eimportsKeys\u003c/code\u003e was left unguarded, allowing code injection via the same \u003ccode\u003eFunction()\u003c/code\u003e constructor sink. \u003ccode\u003eimports\u003c/code\u003e keys containing forbidden identifier characters now throw \u003ccode\u003e\u0026quot;Invalid imports option passed into _.template\u0026quot;\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd security notice for \u003ccode\u003e_.template\u003c/code\u003e in threat model and API docs (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6099\"\u003e#6099\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument \u003ccode\u003elower \u0026gt; upper\u003c/code\u003e behavior in \u003ccode\u003e_.random\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6115\"\u003e#6115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix quotes in \u003ccode\u003e_.compact\u003c/code\u003e jsdoc (\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6090\"\u003e#6090\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e\u003ccode\u003elodash.*\u003c/code\u003e modular packages\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/lodash/lodash/pull/6157\"\u003eDiff\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe have also regenerated and published a select number of the \u003ccode\u003elodash.*\u003c/code\u003e modular packages.\u003c/p\u003e\n\u003cp\u003eThese modular packages had fallen out of sync significantly from the minor/patch updates to lodash. Specifically, we have brought the following packages up to parity w/ the latest lodash release because they have had CVEs on them in the past:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.orderby\"\u003elodash.orderby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.tonumber\"\u003elodash.tonumber\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trim\"\u003elodash.trim\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.trimend\"\u003elodash.trimend\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.sortedindexby\"\u003elodash.sortedindexby\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.zipobjectdeep\"\u003elodash.zipobjectdeep\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.unset\"\u003elodash.unset\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.omit\"\u003elodash.omit\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://www.npmjs.com/package/lodash.template\"\u003elodash.template\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/cb0b9b9212521c08e3eafe7c8cb0af1b42b6649e\"\u003e\u003ccode\u003ecb0b9b9\u003c/code\u003e\u003c/a\u003e release(patch): bump main to 4.18.1 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6177\"\u003e#6177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/75535f57883b7225adb96de1cfc1cd4169cfcb51\"\u003e\u003ccode\u003e75535f5\u003c/code\u003e\u003c/a\u003e chore: prune stale advisory refs (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6170\"\u003e#6170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/62e91bc6a39c98d85b9ada8c44d40593deaf82a4\"\u003e\u003ccode\u003e62e91bc\u003c/code\u003e\u003c/a\u003e docs: remove n_ Node.js \u0026lt; 6 REPL note from README (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6165\"\u003e#6165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/59be2de61f8aa9461c7856533b51d31b7d8babc4\"\u003e\u003ccode\u003e59be2de\u003c/code\u003e\u003c/a\u003e release(minor): bump to 4.18.0 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6161\"\u003e#6161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/af634573030f979194871da7c68f79420992f53d\"\u003e\u003ccode\u003eaf63457\u003c/code\u003e\u003c/a\u003e fix: broken tests for _.template 879aaa9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/1073a7693e1727e0cf3641e5f71f75ddcf8de7c0\"\u003e\u003ccode\u003e1073a76\u003c/code\u003e\u003c/a\u003e fix: linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/879aaa93132d78c2f8d20c60279da9f8b21576d6\"\u003e\u003ccode\u003e879aaa9\u003c/code\u003e\u003c/a\u003e fix: validate imports keys in _.template\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/fe8d32eda854377349a4f922ab7655c8e5df9a0b\"\u003e\u003ccode\u003efe8d32e\u003c/code\u003e\u003c/a\u003e fix: block prototype pollution in baseUnset via constructor/prototype traversal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/18ba0a32f42fd02117f096b032f89c984173462d\"\u003e\u003ccode\u003e18ba0a3\u003c/code\u003e\u003c/a\u003e refactor(fromPairs): use baseAssignValue for consistent assignment (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6153\"\u003e#6153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b8190803d48d60b8c80ad45d39125f32fa618cb2\"\u003e\u003ccode\u003eb819080\u003c/code\u003e\u003c/a\u003e ci: add dist sync validation workflow (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6137\"\u003e#6137\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.14.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n...\n\n_Description has been truncated_","html_url":"https://github.com/joe10832/playwright/pull/12","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/joe10832%2Fplaywright/issues/12","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/12/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-04-07T01:35:31.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"4214922977","node_id":"PR_kwDOL3EKb87QW-tV","number":6,"state":"open","title":"chore(deps): bump the npm_and_yarn group across 15 directories with 20 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-07T01:35:31.000Z","updated_at":"2026-04-07T01:35:56.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":20,"packages":[{"name":"electron","old_version":"19.0.11","new_version":"39.8.5","repository_url":"https://github.com/electron/electron"},{"name":"esbuild","old_version":"0.18.20","new_version":"0.28.0","repository_url":"https://github.com/evanw/esbuild"},{"name":"vite","old_version":"5.2.8","new_version":"8.0.5","repository_url":"https://github.com/vitejs/vite"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"solid-js","old_version":"1.8.11","new_version":"1.9.4","repository_url":"https://github.com/solidjs/solid"},{"name":"svelte","old_version":"4.2.9","new_version":"5.53.5","repository_url":"https://github.com/sveltejs/svelte"},{"name":"flatted","old_version":"3.2.9","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"lodash","old_version":"4.17.21","new_version":"4.18.1","repository_url":"https://github.com/lodash/lodash"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"qs","old_version":"6.11.2","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 11 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [electron](https://github.com/electron/electron) | `19.0.11` | `39.8.5` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.18.20` | `0.28.0` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `5.2.8` | `8.0.5` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [solid-js](https://github.com/solidjs/solid) | `1.8.11` | `1.9.4` |\n| [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) | `4.2.9` | `5.53.5` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.2.9` | `3.4.2` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.18.1` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [qs](https://github.com/ljharb/qs) | `6.11.2` | `6.15.0` |\n\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-core/bundles/utils directory: [minimatch](https://github.com/isaacs/minimatch).\nBumps the npm_and_yarn group with 2 updates in the /packages/playwright-ct-core directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) and [playwright](https://github.com/microsoft/playwright).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-ct-svelte directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-test directory: [playwright](https://github.com/microsoft/playwright).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright/bundles/babel directory: [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright/bundles/expect directory: [picomatch](https://github.com/micromatch/picomatch).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright/bundles/utils directory: [picomatch](https://github.com/micromatch/picomatch).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-react-vite directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-solid directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-svelte directory: [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 2 updates in the /tests/components/ct-svelte-vite directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) and [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte).\nBumps the npm_and_yarn group with 1 update in the /tests/components/ct-vue-vite directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite).\nBumps the npm_and_yarn group with 1 update in the /tests/playwright-test/stable-test-runner directory: [playwright](https://github.com/microsoft/playwright).\nBumps the npm_and_yarn group with 3 updates in the /utils/flakiness-dashboard directory: [@azure/msal-node](https://github.com/AzureAD/microsoft-authentication-library-for-js), [form-data](https://github.com/form-data/form-data) and [jws](https://github.com/brianloveswords/node-jws).\n\nUpdates `electron` from 19.0.11 to 39.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/electron/electron/releases\"\u003eelectron's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eelectron v39.8.5\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.5\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a crash in \u003ccode\u003eclipboard.readImage()\u003c/code\u003e when the clipboard contains malformed image data. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50493\"\u003e#50493\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50491\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50492\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50494\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed a crash when calling an offscreen shared texture's \u003ccode\u003erelease()\u003c/code\u003e after the texture object was garbage collected. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50499\"\u003e#50499\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50500\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50501\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50502\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.4\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.4\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003enodeIntegrationInWorker\u003c/code\u003e overrides in \u003ccode\u003esetWindowOpenHandler\u003c/code\u003e were not honored for child windows sharing a renderer process with their opener. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50468\"\u003e#50468\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50163\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50467\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50134\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed crash when handling JavaScript dialogs from windows opened with invalid or empty URLs. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50400\"\u003e#50400\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50401\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50399\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50398\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed improper focus tracking in BaseWindow on MacOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50338\"\u003e#50338\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50337\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50340\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50339\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed window freeze when failing to enter/exit fullscreen on macOS. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50341\"\u003e#50341\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50344\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50343\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50342\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded support for using a proxy during yarn install. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50349\"\u003e#50349\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50352\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50350\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50351\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 485935305. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50440\"\u003e#50440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for 489381399. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50443\"\u003e#50443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fix for chromium:475877320. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50436\"\u003e#50436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBackported fixes for 484751092, 487117772. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50461\"\u003e#50461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.3\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.3\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded additional ASAR support to additional \u003ccode\u003efs\u003c/code\u003e copy methods. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50284\"\u003e#50284\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50287\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50286\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50285\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed user resizing of transparent windows on win32 platform. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50300\"\u003e#50300\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50301\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50298\"\u003e41\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50299\"\u003e42\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.2\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.2\u003c/h1\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackported fix for b/491421267. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50230\"\u003e#50230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eelectron v39.8.1\u003c/h2\u003e\n\u003ch1\u003eRelease Notes for v39.8.1\u003c/h1\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded validation to protocol client methods to reject protocol names that do not conform to the RFC 3986 URI scheme grammar. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50156\"\u003e#50156\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50157\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50158\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50155\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue on macOS where calling \u003ccode\u003eautoUpdater.quitAndInstall()\u003c/code\u003e could fail if \u003ccode\u003echeckForUpdates()\u003c/code\u003e was called again after an update was already downloaded. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50215\"\u003e#50215\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50216\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50217\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where Chrome Devtools menus may not appear in certain embedded windows. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50136\"\u003e#50136\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50138\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50137\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003eadditionalData\u003c/code\u003e passed to \u003ccode\u003eapp.requestSingleInstanceLock\u003c/code\u003e on Windows could be truncated or fail to deserialize in the primary instance's \u003ccode\u003esecond-instance\u003c/code\u003e event. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50174\"\u003e#50174\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50177\"\u003e38\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50162\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50154\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue where \u003ccode\u003escreen.getCursorScreenPoint()\u003c/code\u003e crashed on Wayland when it was called before a \u003ccode\u003eBrowserWindow\u003c/code\u003e had been created. \u003ca href=\"https://redirect.github.com/electron/electron/pull/50106\"\u003e#50106\u003c/a\u003e \u003c!-- raw HTML omitted --\u003e(Also in \u003ca href=\"https://redirect.github.com/electron/electron/pull/50104\"\u003e40\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/electron/electron/pull/50105\"\u003e41\u003c/a\u003e)\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/9d2f8cb4da0d35e2daf7e7f60e35313b508cb224\"\u003e\u003ccode\u003e9d2f8cb\u003c/code\u003e\u003c/a\u003e refactor: remove dead named-window lookup from guest-window-manager (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50498\"\u003e#50498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/11730047394233e70743c52567e17f4c3b2dc9fc\"\u003e\u003ccode\u003e1173004\u003c/code\u003e\u003c/a\u003e fix: crash calling OSR shared texture release() after texture GC'd (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50499\"\u003e#50499\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/be37adefd08f882e3f1fb8403d2d9e92c3009d56\"\u003e\u003ccode\u003ebe37ade\u003c/code\u003e\u003c/a\u003e fix: crash in clipboard.readImage() on malformed image data (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50493\"\u003e#50493\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/7007907df08d02da98f513dcbdb430ab51be59c7\"\u003e\u003ccode\u003e7007907\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 3 changes from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50461\"\u003e#50461\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/2c8b6ee0c0a7c26871dc0b320982afd8ed29df6c\"\u003e\u003ccode\u003e2c8b6ee\u003c/code\u003e\u003c/a\u003e chore: cherry-pick fbfb27470bf6 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50436\"\u003e#50436\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/4c64377ead6b53bc565d7793a2712e49882e5354\"\u003e\u003ccode\u003e4c64377\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 50b057660b4d from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50440\"\u003e#50440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/0ef056130cde0c19c81ccfbc2932df6911765849\"\u003e\u003ccode\u003e0ef0561\u003c/code\u003e\u003c/a\u003e fix: read nodeIntegrationInWorker from per-frame WebPreferences (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50122\"\u003e#50122\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50\"\u003e#50\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/64373df3ca697bc6fe6e3ab1f463ba05beaf64cf\"\u003e\u003ccode\u003e64373df\u003c/code\u003e\u003c/a\u003e chore: cherry-pick 074d472db745 from chromium (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50443\"\u003e#50443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/13e44072be367f516cfad36f95d183765174f4bf\"\u003e\u003ccode\u003e13e4407\u003c/code\u003e\u003c/a\u003e fix: don't re-parse URL unnecessarily when handling dialogs (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50400\"\u003e#50400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/electron/electron/commit/16a038502a4ea0c79976be60bcc8f28a49f1ab99\"\u003e\u003ccode\u003e16a0385\u003c/code\u003e\u003c/a\u003e ci: output build cache hit rate as GHA annotation (\u003ca href=\"https://redirect.github.com/electron/electron/issues/50369\"\u003e#50369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/electron/electron/compare/v19.0.11...v39.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `esbuild` from 0.18.20 to 0.28.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/releases\"\u003eesbuild's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.28.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdd support for \u003ccode\u003ewith { type: 'text' }\u003c/code\u003e imports (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4435\"\u003e#4435\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe \u003ca href=\"https://github.com/tc39/proposal-import-text\"\u003eimport text\u003c/a\u003e proposal has reached stage 3 in the TC39 process, which means that it's recommended for implementation. It has also already been implemented by \u003ca href=\"https://docs.deno.com/examples/importing_text/\"\u003eDeno\u003c/a\u003e and \u003ca href=\"https://bun.com/docs/guides/runtime/import-html\"\u003eBun\u003c/a\u003e. So with this release, esbuild also adds support for it. This behaves exactly the same as esbuild's existing \u003ca href=\"https://esbuild.github.io/content-types/#text\"\u003e\u003ccode\u003etext\u003c/code\u003e loader\u003c/a\u003e. Here's an example:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eimport string from './example.txt' with { type: 'text' }\nconsole.log(string)\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdd integrity checks to fallback download path (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4343\"\u003e#4343\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eInstalling esbuild via npm is somewhat complicated with several different edge cases (see \u003ca href=\"https://esbuild.github.io/getting-started/#additional-npm-flags\"\u003eesbuild's documentation\u003c/a\u003e for details). If the regular installation of esbuild's platform-specific package fails, esbuild's install script attempts to download the platform-specific package itself (first with the \u003ccode\u003enpm\u003c/code\u003e command, and then with a HTTP request to \u003ccode\u003eregistry.npmjs.org\u003c/code\u003e as a last resort).\u003c/p\u003e\n\u003cp\u003eThis last resort path previously didn't have any integrity checks. With this release, esbuild will now verify that the hash of the downloaded binary matches the expected hash for the current release. This means the hashes for all of esbuild's platform-specific binary packages will now be embedded in the top-level \u003ccode\u003eesbuild\u003c/code\u003e package. Hopefully this should work without any problems. But just in case, this change is being done as a breaking change release.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpdate the Go compiler from 1.25.7 to 1.26.1\u003c/p\u003e\n\u003cp\u003eThis upgrade should not affect anything. However, there have been some significant internal changes to the Go compiler, so esbuild could potentially behave differently in certain edge cases:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eIt now uses the \u003ca href=\"https://go.dev/doc/go1.26#new-garbage-collector\"\u003enew garbage collector\u003c/a\u003e that comes with Go 1.26.\u003c/li\u003e\n\u003cli\u003eThe Go compiler is now more aggressive with allocating memory on the stack.\u003c/li\u003e\n\u003cli\u003eThe executable format that the Go linker uses has undergone several changes.\u003c/li\u003e\n\u003cli\u003eThe WebAssembly build now unconditionally makes use of the sign extension and non-trapping floating-point to integer conversion instructions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eYou can read the \u003ca href=\"https://go.dev/doc/go1.26\"\u003eGo 1.26 release notes\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.27.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix lowering of define semantics for TypeScript parameter properties (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4421\"\u003e#4421\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe previous release incorrectly generated class fields for TypeScript parameter properties even when the configured target environment does not support class fields. With this release, the generated class fields will now be correctly lowered in this case:\u003c/p\u003e\n\u003cpre lang=\"ts\"\u003e\u003ccode\u003e// Original code\nclass Foo {\n  constructor(public x = 1) {}\n  y = 2\n}\n\u003cp\u003e// Old output (with --loader=ts --target=es2021)\nclass Foo {\nconstructor(x = 1) {\nthis.x = x;\n__publicField(this, \u0026quot;y\u0026quot;, 2);\n}\nx;\n}\u003c/p\u003e\n\u003cp\u003e// New output (with --loader=ts --target=es2021)\nclass Foo {\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/blob/main/CHANGELOG-2023.md\"\u003eesbuild's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog: 2023\u003c/h1\u003e\n\u003cp\u003eThis changelog documents all esbuild versions published in the year 2023 (versions 0.16.13 through 0.19.11).\u003c/p\u003e\n\u003ch2\u003e0.19.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix TypeScript-specific class transform edge case (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3559\"\u003e#3559\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe previous release introduced an optimization that avoided transforming \u003ccode\u003esuper()\u003c/code\u003e in the class constructor for TypeScript code compiled with \u003ccode\u003euseDefineForClassFields\u003c/code\u003e set to \u003ccode\u003efalse\u003c/code\u003e if all class instance fields have no initializers. The rationale was that in this case, all class instance fields are omitted in the output so no changes to the constructor are needed. However, if all of this is the case \u003cem\u003eand\u003c/em\u003e there are \u003ccode\u003e#private\u003c/code\u003e instance fields with initializers, those private instance field initializers were still being moved into the constructor. This was problematic because they were being inserted before the call to \u003ccode\u003esuper()\u003c/code\u003e (since \u003ccode\u003esuper()\u003c/code\u003e is now no longer transformed in that case). This release introduces an additional optimization that avoids moving the private instance field initializers into the constructor in this edge case, which generates smaller code, matches the TypeScript compiler's output more closely, and avoids this bug:\u003c/p\u003e\n\u003cpre lang=\"ts\"\u003e\u003ccode\u003e// Original code\nclass Foo extends Bar {\n  #private = 1;\n  public: any;\n  constructor() {\n    super();\n  }\n}\n\u003cp\u003e// Old output (with esbuild v0.19.9)\nclass Foo extends Bar {\nconstructor() {\nsuper();\nthis.#private = 1;\n}\n#private;\n}\u003c/p\u003e\n\u003cp\u003e// Old output (with esbuild v0.19.10)\nclass Foo extends Bar {\nconstructor() {\nthis.#private = 1;\nsuper();\n}\n#private;\n}\u003c/p\u003e\n\u003cp\u003e// New output\nclass Foo extends Bar {\n#private = 1;\nconstructor() {\nsuper();\n}\n}\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eMinifier: allow reording a primitive past a side-effect (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/3568\"\u003e#3568\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe minifier previously allowed reordering a side-effect past a primitive, but didn't handle the case of reordering a primitive past a side-effect. This additional case is now handled:\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/6a794dff68e6a43539f6da671e3080efdf11ca70\"\u003e\u003ccode\u003e6a794df\u003c/code\u003e\u003c/a\u003e publish 0.28.0 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/64ee0ea63b2ff303caafc9610c388dc72c882c23\"\u003e\u003ccode\u003e64ee0ea\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4435\"\u003e#4435\u003c/a\u003e: support \u003ccode\u003ewith { type: text }\u003c/code\u003e imports\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/ef65aeeaacdb71eade186f888975b1de89574314\"\u003e\u003ccode\u003eef65aee\u003c/code\u003e\u003c/a\u003e fix sort order in \u003ccode\u003esnapshots_packagejson.txt\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/1a26a8ecbc39aaf1379c524a0274a08fbcbed655\"\u003e\u003ccode\u003e1a26a8e\u003c/code\u003e\u003c/a\u003e try to fix \u003ccode\u003etest-old-ts\u003c/code\u003e, also shuffle CI tasks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/556ce6c1fc00d7c0917fbfada01ed8e5251bc510\"\u003e\u003ccode\u003e556ce6c\u003c/code\u003e\u003c/a\u003e use \u003ccode\u003e''\u003c/code\u003e instead of \u003ccode\u003enull\u003c/code\u003e to omit build hashes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/8e675a81a473ea69a46a69792f1386bb110dd877\"\u003e\u003ccode\u003e8e675a8\u003c/code\u003e\u003c/a\u003e ci: allow missing binary hashes for tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/7067763b904fe8a522fa840a4a48c5fbd4c395e0\"\u003e\u003ccode\u003e7067763\u003c/code\u003e\u003c/a\u003e Reapply \u0026quot;update go 1.25.7 =\u0026gt; 1.26.1\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/39473a952ab3b450d0578b698a8b8d2a02332e0d\"\u003e\u003ccode\u003e39473a9\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4343\"\u003e#4343\u003c/a\u003e: integrity check for binary download\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/2025c9ff6ab15ba6b0f9d074fd732250cc46e4a3\"\u003e\u003ccode\u003e2025c9f\u003c/code\u003e\u003c/a\u003e publish 0.27.7 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/c6b586e4904f47e8d5f783a2813660c13e2672e7\"\u003e\u003ccode\u003ec6b586e\u003c/code\u003e\u003c/a\u003e fix typo in \u003ccode\u003eMakefile\u003c/code\u003e for \u003ccode\u003e@esbuild/win32-x64\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/evanw/esbuild/compare/v0.18.20...v0.28.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for esbuild since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 5.2.8 to 8.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.5\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.5/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.4\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.4/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.3/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.3/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.2/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.1/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@8.0.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@8.0.1/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.0/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@8.0.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@8.0.0/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.18\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.18/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.17\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.17/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.16\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.16/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.15\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.15/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.14\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.14/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v8.0.4...v8.0.5\"\u003e8.0.5\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapply server.fs check to env transport (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f02d9fde0b195afe3ea2944414186962fbbe41e0\"\u003ef02d9fd\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eavoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/79f002f2286c03c88c7b74c511c7f9fc6dc46694\"\u003e79f002f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echeck \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22160\"\u003e#22160\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/a9a3df299378d9cbc5f069e3536a369f8188c8ff\"\u003ea9a3df2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edisallow referencing files outside the package from sourcemap (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22158\"\u003e#22158\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f05f50173461789e0f1323fe06b51f18ca41c132\"\u003ef05f501\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v8.0.3...v8.0.4\"\u003e8.0.4\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow esbuild 0.28 as peer deps (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22155\"\u003e#22155\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/b0da97372f5dba73e78035d1cc7680466ff6cf7f\"\u003eb0da973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehmr:\u003c/strong\u003e truncate list of files on hmr update (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21535\"\u003e#21535\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/d00e806d7be15ebbfe7875e9244963d80ee8b142\"\u003ed00e806\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eoptimizer:\u003c/strong\u003e log when dependency scanning or bundling takes over 1s (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21797\"\u003e#21797\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f61a1ab33b05dc6f6a7eda6e8bc9c4c5b9aab133\"\u003ef61a1ab\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ehasBothRollupOptionsAndRolldownOptions\u003c/code\u003e should return \u003ccode\u003efalse\u003c/code\u003e for proxy case (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22043\"\u003e#22043\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/99897d27b44dd73307fa03e2f11f0baa1a1dc939\"\u003e99897d2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd types for \u003ccode\u003evite/modulepreload-polyfill\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22126\"\u003e#22126\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/17330d2b9e132460f194d6d4b547cfee7e25c788\"\u003e17330d2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update all non-major dependencies (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22073\"\u003e#22073\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/6daa10ff1e8d15a90f49d8dd909ff208da85d6d8\"\u003e6daa10f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update all non-major dependencies (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22143\"\u003e#22143\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/22b016612703320db45c64a2fe44472051ef5ec5\"\u003e22b0166\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eresolve:\u003c/strong\u003e resolve tsconfig paths starting with \u003ccode\u003e#\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22038\"\u003e#22038\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/3460fc55aa89aef4103d2c05ac2e446032511a6d\"\u003e3460fc5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003essr:\u003c/strong\u003e use browser platform for webworker SSR builds (fix \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21969\"\u003e#21969\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21963\"\u003e#21963\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/364c2273a121dad4d93ec3b9ec87ffbe0d6e860b\"\u003e364c227\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eenvironment.fetchModule\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22035\"\u003e#22035\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/54229e78631ebf10d1db767b51ea85f3cf06718a\"\u003e54229e7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMiscellaneous Chores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update rolldown-related dependencies (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21989\"\u003e#21989\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/0ded6274579e8bda6b22a7ba93b15d15b4c28b78\"\u003e0ded627\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCode Refactoring\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupgrade to typescript 6 (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22110\"\u003e#22110\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/cc41398c2cf0bb5061cf0ca5dc3b408ae7e41191\"\u003ecc41398\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v8.0.2...v8.0.3\"\u003e8.0.3\u003c/a\u003e (2026-03-26)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate rolldown to 1.0.0-rc.12 (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22024\"\u003e#22024\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/84164ef47b24b1de114f1c29446a9e650825d4ea\"\u003e84164ef\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehtml:\u003c/strong\u003e cache unfiltered CSS list to prevent missing styles across entries (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22017\"\u003e#22017\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/5464190a3ee8f23db20004e7818186fbcc32b0e5\"\u003e5464190\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emodule-runner:\u003c/strong\u003e handle non-ascii characters in base64 sourcemaps (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21985\"\u003e#21985\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/77c95bff834c43f8be9fe513c10b5393805a7487\"\u003e77c95bf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emodule-runner:\u003c/strong\u003e skip re-import if the runner is closed (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22020\"\u003e#22020\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/ee2c2cd2c2ce3f53088bd2313fa23e9d52a49b4f\"\u003eee2c2cd\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eoptimizer:\u003c/strong\u003e scan is not resolving sub path import if used in a glob import (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22018\"\u003e#22018\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/ddfe20d19e95a323fa3c8d2c19a02c4e02f93824\"\u003eddfe20d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003essr:\u003c/strong\u003e ssrTransform incorrectly rewrites \u003ccode\u003emeta\u003c/code\u003e identifier inside \u003ccode\u003eimport.meta\u003c/code\u003e when a binding named \u003ccode\u003emeta\u003c/code\u003e exists (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22019\"\u003e#22019\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/cff5f0cca5f08c2ce50f233441485e10b6e115e9\"\u003ecff5f0c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMiscellaneous Chores\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/1a12d4ca4c62eedaeaf734d722b27ab17b5b1dd0\"\u003e\u003ccode\u003e1a12d4c\u003c/code\u003e\u003c/a\u003e release: v8.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/79f002f2286c03c88c7b74c511c7f9fc6dc46694\"\u003e\u003ccode\u003e79f002f\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/a9a3df299378d9cbc5f069e3536a369f8188c8ff\"\u003e\u003ccode\u003ea9a3df2\u003c/code\u003e\u003c/a\u003e fix: check \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160\"\u003e#22160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f02d9fde0b195afe3ea2944414186962fbbe41e0\"\u003e\u003ccode\u003ef02d9fd\u003c/code\u003e\u003c/a\u003e fix: apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f05f50173461789e0f1323fe06b51f18ca41c132\"\u003e\u003ccode\u003ef05f501\u003c/code\u003e\u003c/a\u003e fix: disallow referencing files outside the package from sourcemap (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22158\"\u003e#22158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/7339bdc915c297e16e6530f6ebcbb2509cb57f24\"\u003e\u003ccode\u003e7339bdc\u003c/code\u003e\u003c/a\u003e release: v8.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/54229e78631ebf10d1db767b51ea85f3cf06718a\"\u003e\u003ccode\u003e54229e7\u003c/code\u003e\u003c/a\u003e docs: add \u003ccode\u003eenvironment.fetchModule\u003c/code\u003e documentation (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22035\"\u003e#22035\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/b0da97372f5dba73e78035d1cc7680466ff6cf7f\"\u003e\u003ccode\u003eb0da973\u003c/code\u003e\u003c/a\u003e feat: allow esbuild 0.28 as peer deps (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22155\"\u003e#22155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/22b016612703320db45c64a2fe44472051ef5ec5\"\u003e\u003ccode\u003e22b0166\u003c/code\u003e\u003c/a\u003e fix(deps): update all non-major dependencies (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22143\"\u003e#22143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/17330d2b9e132460f194d6d4b547cfee7e25c788\"\u003e\u003ccode\u003e17330d2\u003c/code\u003e\u003c/a\u003e fix: add types for \u003ccode\u003evite/modulepreload-polyfill\u003c/code\u003e (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22126\"\u003e#22126\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vitejs/vite/commits/v8.0.5/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for vite since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 2.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 5.2.8 to 8.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.5\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.5/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.4\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.4/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.3/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.3/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.2/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.1/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@8.0.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@8.0.1/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ecreate-vite@8.0.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/create-vite@8.0.0/packages/create-vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@8.0.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@8.0.0/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.18\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.18/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.17\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.17/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.16\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.16/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.15\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.15/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev8.0.0-beta.14\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v8.0.0-beta.14/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v8.0.4...v8.0.5\"\u003e8.0.5\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapply server.fs check to env transport (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22159\"\u003e#22159\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f02d9fde0b195afe3ea2944414186962fbbe41e0\"\u003ef02d9fd\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eavoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22161\"\u003e#22161\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/79f002f2286c03c88c7b74c511c7f9fc6dc46694\"\u003e79f002f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echeck \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22160\"\u003e#22160\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/a9a3df299378d9cbc5f069e3536a369f8188c8ff\"\u003ea9a3df2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edisallow referencing files outside the package from sourcemap (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22158\"\u003e#22158\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f05f50173461789e0f1323fe06b51f18ca41c132\"\u003ef05f501\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v8.0.3...v8.0.4\"\u003e8.0.4\u003c/a\u003e (2026-04-06)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow esbuild 0.28 as peer deps (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22155\"\u003e#22155\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/b0da97372f5dba73e78035d1cc7680466ff6cf7f\"\u003eb0da973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ehmr:\u003c/strong\u003e truncate list of files on hmr update (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21535\"\u003e#21535\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/d00e806d7be15ebbfe7875e9244963d80ee8b142\"\u003ed00e806\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eoptimizer:\u003c/strong\u003e log when dependency scanning or bundling takes over 1s (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21797\"\u003e#21797\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/f61a1ab33b05dc6f6a7eda6e8bc9c4c5b9aab133\"\u003ef61a1ab\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ehasBothRollupOptionsAndRolldownOptions\u003c/code\u003e should return \u003ccode\u003efalse\u003c/code\u003e for proxy case (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22043\"\u003e#22043\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/99897d27b44dd73307fa03e2f11f0baa1a1dc939\"\u003e99897d2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd types for \u003ccode\u003evite/modulepreload-polyfill\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22126\"\u003e#22126\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/17330d2b9e132460f194d6d4b547cfee7e25c788\"\u003e17330d2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update all non-major dependencies (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22073\"\u003e#22073\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/6daa10ff1e8d15a90f49d8dd909ff208da85d6d8\"\u003e6daa10f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update all non-major dependencies (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22143\"\u003e#22143\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/22b016612703320db45c64a2fe44472051ef5ec5\"\u003e22b0166\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eresolve:\u003c/strong\u003e resolve tsconfig paths starting with \u003ccode\u003e#\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22038\"\u003e#22038\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/3460fc55aa89aef4103d2c05ac2e446032511a6d\"\u003e3460fc5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003essr:\u003c/strong\u003e use browser platform for webworker SSR builds (fix \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21969\"\u003e#21969\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21963\"\u003e#21963\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/364c2273a121dad4d93ec3b9ec87ffbe0d6e860b\"\u003e364c227\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eenvironment.fetchModule\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22035\"\u003e#22035\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/54229e78631ebf10d1db767b51ea85f3cf06718a\"\u003e54229e7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMiscellaneous Chores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update rolldown-related dependencies (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21989\"\u003e#21989\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/0ded6274579e8bda6b22a7ba93b15d15b4c28b78\"\u003e0ded627\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCode Refactoring\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupgrade to typescript 6 (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22110\"\u003e#22110\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/cc41398c2cf0bb5061cf0ca5dc3b408ae7e41191\"\u003ecc41398\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v8.0.2...v8.0.3\"\u003e8.0.3\u003c/a\u003e (2026-03-26)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate rolldown to 1.0.0-rc.12 (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22024\"\u003e#22024\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/84164ef47b24b1de114f1c29446a9e650825d4ea\"\u003e84164ef\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehtml:\u003c/strong\u003e cache unfiltered CSS list to prevent missing styles across entries (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22017\"\u003e#22017\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/5464190a3ee8f23db20004e7818186fbcc32b0e5\"\u003e5464190\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emodule-runner:\u003c/strong\u003e handle non-ascii characters in base64 sourcemaps (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21985\"\u003e#21985\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/77c95bff834c43f8be9fe513c10b5393805a7487\"\u003e77c95bf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emodule-runner:\u003c/strong\u003e skip re-import if the runner is closed (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22020\"\u003e#22020\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/ee2c2cd2c2ce3f53088bd2313fa23e9d52a49b4f\"\u003eee2c2cd\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eoptimizer:\u003c/strong\u003e scan is not resolving sub path import if used in a glob import (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22018\"\u003e#22018\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/ddfe20d19e95a323fa3c8d2c19a02c4e02f93824\"\u003eddfe20d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003essr:\u003c/strong\u003e ssrTransform incorrectly rewrites \u003ccode\u003emeta\u003c/code\u003e identifier inside \u003ccode\u003eimport.meta\u003c/code\u003e when a binding named \u003ccode\u003emeta\u003c/code\u003e exists (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/22019\"\u003e#22019\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/cff5f0cca5f08c2ce50f233441485e10b6e115e9\"\u003ecff5f0c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMiscellaneous Chores\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/1a12d4ca4c62eedaeaf734d722b27ab17b5b1dd0\"\u003e\u003ccode\u003e1a12d4c\u003c/code\u003e\u003c/a\u003e release: v8.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/79f002f2286c03c88c7b74c511c7f9fc6dc46694\"\u003e\u003ccode\u003e79f002f\u003c/code\u003e\u003c/a\u003e fix: avoid path traversal with optimize deps sourcemap handler (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22161\"\u003e#22161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/a9a3df299378d9cbc5f069e3536a369f8188c8ff\"\u003e\u003ccode\u003ea9a3df2\u003c/code\u003e\u003c/a\u003e fix: check \u003ccode\u003eserver.fs\u003c/code\u003e after stripping query as well (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22160\"\u003e#22160\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f02d9fde0b195afe3ea2944414186962fbbe41e0\"\u003e\u003ccode\u003ef02d9fd\u003c/code\u003e\u003c/a\u003e fix: apply server.fs check to env transport (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22159\"\u003e#22159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/f05f50173461789e0f1323fe06b51f18ca41c132\"\u003e\u003ccode\u003ef05f501\u003c/code\u003e\u003c/a\u003e fix: disallow referencing files outside the package from sourcemap (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22158\"\u003e#22158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/7339bdc915c297e16e6530f6ebcbb2509cb57f24\"\u003e\u003ccode\u003e7339bdc\u003c/code\u003e\u003c/a\u003e release: v8.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/54229e78631ebf10d1db767b51ea85f3cf06718a\"\u003e\u003ccode\u003e54229e7\u003c/code\u003e\u003c/a\u003e docs: add \u003ccode\u003eenvironment.fetchModule\u003c/code\u003e documentation (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22035\"\u003e#22035\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/b0da97372f5dba73e78035d1cc7680466ff6cf7f\"\u003e\u003ccode\u003eb0da973\u003c/code\u003e\u003c/a\u003e feat: allow esbuild 0.28 as peer deps (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22155\"\u003e#22155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/22b016612703320db45c64a2fe44472051ef5ec5\"\u003e\u003ccode\u003e22b0166\u003c/code\u003e\u003c/a\u003e fix(deps): update all non-major dependencies (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22143\"\u003e#22143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/17330d2b9e132460f194d6d4b547cfee7e25c788\"\u003e\u003ccode\u003e17330d2\u003c/code\u003e\u003c/a\u003e fix: add types for \u003ccode\u003evite/modulepreload-polyfill\u003c/code\u003e (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/22126\"\u003e#22126\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vitejs/vite/commits/v8.0.5/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for vite since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `solid-js` from 1.8.11 to 1.9.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/solidjs/solid/releases\"\u003esolid-js's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.9.0 - LGTM!\u003c/h2\u003e\n\u003cp\u003eThis release like the last is focusing on small quality of life improvements and adjustments that will help us move towards 2.0. So while not the most exciting release to everyone it provides some really important features and fixes to some developers.\u003c/p\u003e\n\u003cp\u003eAnd unlike many previous releases the vast majority of the work and features came from PRs from the community. So really all I can say is Looks Good to Me!\u003c/p\u003e\n\u003ch2\u003eBetter JSX Validation\u003c/h2\u003e\n\u003cp\u003eWhile still incomplete across templates we've added JSDOM to the compiler to better detect invalid HTML at build time by comparing what we expect the template to be with what a browser would output. This now includes things that are nested we didn't detect before like putting \u003ccode\u003e\u0026lt;a\u0026gt;\u003c/code\u003e inside other \u003ccode\u003e\u0026lt;a\u0026gt;\u003c/code\u003e tags which will lead to the browser \u0026quot;correcting\u0026quot; it in less than intuitive ways.\u003c/p\u003e\n\u003ch2\u003eImproved Exports\u003c/h2\u003e\n\u003cp\u003eWhile each environment in \u003ccode\u003esolid-js/web\u003c/code\u003e has its own methods to be used in the compiler. We are now exporting the client methods from the server to prevent weird import errors. Now these methods will throw if used in this environment but shouldn't break your build.\u003c/p\u003e\n\u003cp\u003eAdditionally we have seen some issues in bundlers that incorrectly feed our ESM exports back through the browser field. While this is a known issue they all pointed issues at each other and with no intention of fixing it. We have removed the browser field in this release, meaning some legacy packages may have issues resolving browser if they don't support export conditions.\u003c/p\u003e\n\u003cp\u003eThis is regretful but this blocked deployments on several platforms and since this was the only fix at our disposal after two years of attempting to push this issue to the bundlers to no avail, we've moved forward with it.\u003c/p\u003e\n\u003ch2\u003eCustom Element improvements\u003c/h2\u003e\n\u003cp\u003eWe have a few improvements to our custom element support in this release. First off we now detect elements with the \u003ccode\u003eis\u003c/code\u003e attribute as custom elements which means all the special behavior is afforded to them.\u003c/p\u003e\n\u003cp\u003eWe've also improved our event handler delegating retargetting to better handle shadow DOM events. There were cases where we skipped over part of the tree.\u003c/p\u003e\n\u003cp\u003eFinally we've added the \u003ccode\u003ebool:\u003c/code\u003e attribute namespace to handle explicitly setting certain attributes according to boolean attribute rules. While this isn't necessary for built-in booleans currently we handle most attributes as properties and we lacked a specific override. But now we have it:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003e\u0026lt;my-element bool:enable={isEnabled()}\u0026gt;\u0026lt;/my-element\u0026gt;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003eSupport for handleEvent Syntax in Non-Delegated Events\u003c/h2\u003e\n\u003cp\u003eA little known thing is that events actually also support objects instead of functions (See: \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/API/EventTarget/addEventListener\"\u003ehttps://developer.mozilla.org/en-US/docs/Web/API/EventTarget/addEventListener\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eWe(thanks \u003ca href=\"https://github.com/titoBouzout\"\u003e\u003ccode\u003e@​titoBouzout\u003c/code\u003e\u003c/a\u003e) realized we can use this mechanism as a way to set advanced rules like \u003ccode\u003epassive\u003c/code\u003e or \u003ccode\u003ecapture\u003c/code\u003e on this object as way to handle all current and future event attributes that browsers might add. This way we don't need specific mechanisms like \u003ccode\u003eoncapture:\u003c/code\u003e (which is now deprecated).\u003c/p\u003e\n\u003cp\u003eInstead using \u003ccode\u003eon:\u003c/code\u003e you can set the event properties you wish.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003e\u0026lt;\u0026gt;\r\n  \u0026lt;div on:click={{\r\n    handleEvent(e) {\r\n      console.log(\u0026quot;clicked\u0026quot;, e)\r\n    },\r\n    once:true\r\n  }/\u0026gt;\r\n  \u0026lt;div on:wheel={{\r\n    handleEvent(e) {\r\n      e.preventDefault() // only works on not passive events\r\n      e.stopPropagation()  \r\n\u0026lt;/tr\u0026gt;\u0026lt;/table\u0026gt; \n\u003c/code\u003e\u003c/pre\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/9316baf658c83f4b372ab08709ca7aaefeaba3c0\"\u003e\u003ccode\u003e9316baf\u003c/code\u003e\u003c/a\u003e v1.9.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/7f9cd3d395d10179d39bfdb803c101d56067ffd5\"\u003e\u003ccode\u003e7f9cd3d\u003c/code\u003e\u003c/a\u003e lazy image, tagged template detection, security fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/dca942a351d889adc116ad7f5f8bd62ac2ed7535\"\u003e\u003ccode\u003edca942a\u003c/code\u003e\u003c/a\u003e formatting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/b93956f28ed75469af6976a98728e313d0edd236\"\u003e\u003ccode\u003eb93956f\u003c/code\u003e\u003c/a\u003e fix escaping in resolution done outside of DOM Expressions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/4d824b08d8534d2a079f9ca4c1ea980684c05582\"\u003e\u003ccode\u003e4d824b0\u003c/code\u003e\u003c/a\u003e Merge branch 'main' of github.com:solidjs/solid\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/199dd69297b0b120fbea2ef1cc2699eef8b4467a\"\u003e\u003ccode\u003e199dd69\u003c/code\u003e\u003c/a\u003e fix reconcile null guard\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/32aa744f1dad9e7daab0661acc62baec27d7b40d\"\u003e\u003ccode\u003e32aa744\u003c/code\u003e\u003c/a\u003e Improve resolving arguments in createResource (\u003ca href=\"https://redirect.github.com/solidjs/solid/issues/2353\"\u003e#2353\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/73822b287f4d38e219588e6ee7f64fa712663598\"\u003e\u003ccode\u003e73822b2\u003c/code\u003e\u003c/a\u003e v1.9.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/5a14ab8ac569a97231a6e0011774ae3f4396e7ee\"\u003e\u003ccode\u003e5a14ab8\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/solidjs/solid/issues/2337\"\u003e#2337\u003c/a\u003e empty attributes in solid-element\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/solidjs/solid/commit/9b70a15055462dee3a1c34d24eeb001ca4a694a2\"\u003e\u003ccode\u003e9b70a15\u003c/code\u003e\u003c/a\u003e validation fixes, type updates, ssr attribute fix\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/solidjs/solid/compare/v1.8.11...v1.9.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `svelte` from 4.2.9 to 5.53.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/releases\"\u003esvelte's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esvelte@5.53.5\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: escape \u003ccode\u003einnerText\u003c/code\u003e and \u003ccode\u003etextContent\u003c/code\u003e bindings of \u003ccode\u003econtenteditable\u003c/code\u003e (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0df5abcae223058ceb95491470372065fb87951d\"\u003e\u003ccode\u003e0df5abcae223058ceb95491470372065fb87951d\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: sanitize \u003ccode\u003etransformError\u003c/code\u003e values prior to embedding in HTML comments (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0298e979371bb583855c9810db79a70a551d22b9\"\u003e\u003ccode\u003e0298e979371bb583855c9810db79a70a551d22b9\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.4\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: set server context after async transformError (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17799\"\u003e#17799\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: hydrate if blocks correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17784\"\u003e#17784\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle default parameters scope leaks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17788\"\u003e#17788\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent flushed effects from running again (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17787\"\u003e#17787\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: render \u003ccode\u003e:catch\u003c/code\u003e of \u003ccode\u003e#await\u003c/code\u003e block with correct key (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17769\"\u003e#17769\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003echore: pin aria-query@5.3.1 (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17772\"\u003e#17772\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: make string coercion consistent to \u003ccode\u003etoString\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17774\"\u003e#17774\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: update expressions on server deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17767\"\u003e#17767\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: further obfuscate \u003ccode\u003enode:crypto\u003c/code\u003e import from overzealous static analysis (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17763\"\u003e#17763\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle shadowed function names correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17753\"\u003e#17753\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esvelte@5.53.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efeat: allow comments in tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17671\"\u003e#17671\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efeat: allow error boundaries to work on the server (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17672\"\u003e#17672\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: use TrustedHTML to test for customizable \u003c!-- raw HTML omitted --\u003e support, where necessary (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17743\"\u003e#17743\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md\"\u003esvelte's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.53.5\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: escape \u003ccode\u003einnerText\u003c/code\u003e and \u003ccode\u003etextContent\u003c/code\u003e bindings of \u003ccode\u003econtenteditable\u003c/code\u003e (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0df5abcae223058ceb95491470372065fb87951d\"\u003e\u003ccode\u003e0df5abcae223058ceb95491470372065fb87951d\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: sanitize \u003ccode\u003etransformError\u003c/code\u003e values prior to embedding in HTML comments (\u003ca href=\"https://github.com/sveltejs/svelte/commit/0298e979371bb583855c9810db79a70a551d22b9\"\u003e\u003ccode\u003e0298e979371bb583855c9810db79a70a551d22b9\u003c/code\u003e\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.4\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: set server context after async transformError (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17799\"\u003e#17799\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: hydrate if blocks correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17784\"\u003e#17784\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: handle default parameters scope leaks (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17788\"\u003e#17788\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: prevent flushed effects from running again (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17787\"\u003e#17787\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: render \u003ccode\u003e:catch\u003c/code\u003e of \u003ccode\u003e#await\u003c/code\u003e block with correct key (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17769\"\u003e#17769\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003echore: pin aria-query@5.3.1 (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17772\"\u003e#17772\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: make string coercion consistent to \u003ccode\u003etoString\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17774\"\u003e#17774\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efix: update expressions on server deriveds (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17767\"\u003e#17767\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efix: further obfuscate \u003ccode\u003enode:crypto\u003c/code\u003e import from overzealous static analysis (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17763\"\u003e#17763\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle shadowed function names correctly (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17753\"\u003e#17753\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.53.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat: allow comments in tags (\u003ca href=\"https://redirect.github.com/sveltejs/svelte/pull/17671\"\u003e#17671\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/ed14b499d6ea6821b5e8f81a723164eb8198dfa9\"\u003e\u003ccode\u003eed14b49\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17802\"\u003e#17802\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0df5abcae223058ceb95491470372065fb87951d\"\u003e\u003ccode\u003e0df5abc\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/0298e979371bb583855c9810db79a70a551d22b9\"\u003e\u003ccode\u003e0298e97\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/96fd3ce763525ce6276520ca605dba5ece74ae93\"\u003e\u003ccode\u003e96fd3ce\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17786\"\u003e#17786\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/1b3e6605190ab8ca21292ddd3ccf2a71387d79fe\"\u003e\u003ccode\u003e1b3e660\u003c/code\u003e\u003c/a\u003e fix: prevent flushed effects from running again (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17787\"\u003e#17787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/673a1ab9643644fe31beda33eacfdec9ee1f2668\"\u003e\u003ccode\u003e673a1ab\u003c/code\u003e\u003c/a\u003e fix: set server context after async transformError (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17799\"\u003e#17799\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/3a289797bd205182e7677f58daf472caf537afc2\"\u003e\u003ccode\u003e3a28979\u003c/code\u003e\u003c/a\u003e fix: handle default parameters scope leaks (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17788\"\u003e#17788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/fcdc0289db5e6b0f7cf68cd3988450dad567392f\"\u003e\u003ccode\u003efcdc028\u003c/code\u003e\u003c/a\u003e fix: hydrate if blocks correctly (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17784\"\u003e#17784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/97f3ac557158dd7754264dfe735ed83c2ce95e1f\"\u003e\u003ccode\u003e97f3ac5\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17775\"\u003e#17775\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sveltejs/svelte/commit/7deedc5bb4fd6d0f033d00fa9741c7141fffd730\"\u003e\u003ccode\u003e7deedc5\u003c/code\u003e\u003c/a\u003e fix: render \u003ccode\u003e:catch\u003c/code\u003e of \u003ccode\u003e#await\u003c/code\u003e block with correct key (\u003ca href=\"https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte/issues/17769\"\u003e#17769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sveltejs/svelte/commits/svelte@5.53.5/packages/svelte\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for svelte since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.23.8 to 7.29.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.2 (2026-03-16)\u003c/h2\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17840\"\u003e#17840\u003c/a\u003e [7.x backport] async x =\u0026gt; {} must be in leading pos (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helpers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17805\"\u003e#17805\u003c/a\u003e [7.x backport] fix: Properly handle await in finally (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-preset-env\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17789\"\u003e#17789\u003c/a\u003e [7.x backport] preset-env include/exclude should accept bugfix plugins (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17813\"\u003e#17813\u003c/a\u003e chore: update eslint peer deps (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 2\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.1 (2026-02-04)\u003c/h2\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17771\"\u003e#17771\u003c/a\u003e [7.x backport] fix: ensure \u003ccode\u003etargets.esmodules\u003c/code\u003e is validated (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17776\"\u003e#17776\u003c/a\u003e [7.x backport] Fix undefined when 64 indents (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 2\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.29.0 (2026-01-31)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca hr...\n\n_Description has been truncated_","html_url":"https://github.com/alialobidm/playwright/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/alialobidm%2Fplaywright/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-03-30T22:41:33.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"4174506994","node_id":"PR_kwDOPkuVNc7OxolR","number":2,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 7 directories with 22 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-07T02:57:20.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-30T22:41:33.000Z","updated_at":"2026-04-07T02:57:21.000Z","time_to_close":620147,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":22,"packages":[{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"@modelcontextprotocol/sdk","old_version":"1.17.3","new_version":"1.26.0","repository_url":"https://github.com/modelcontextprotocol/typescript-sdk"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"yaml","old_version":"2.6.0","new_version":"2.8.3","repository_url":"https://github.com/eemeli/yaml"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.13","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"electron","old_version":"30.5.1","new_version":"35.7.5","repository_url":"https://github.com/electron/electron"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"immutable","old_version":"4.3.7","new_version":"4.3.8","repository_url":"https://github.com/immutable-js/immutable-js"},{"name":"vite","old_version":"6.3.5","new_version":"6.4.1","repository_url":"https://github.com/vitejs/vite"},{"name":"svelte","old_version":"5.37.3","new_version":"5.53.5","repository_url":"https://github.com/sveltejs/svelte"},{"name":"flatted","old_version":"3.3.3","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"rollup","old_version":"4.40.1","new_version":"4.60.1","repository_url":"https://github.com/rollup/rollup"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 2 updates in the /utils/flakiness-dashboard directory: [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) and [jws](https://github.com/brianloveswords/node-jws).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright/bundles/utils directory: [picomatch](https://github.com/micromatch/picomatch).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright/bundles/mcp directory: [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright/bundles/expect directory: [picomatch](https://github.com/micromatch/picomatch).\nBumps the npm_and_yarn group with 1 update in the /packages/playwright-core/bundles/zip directory: [yauzl](https://github.com/thejoshwolfe/yauzl).\nBumps the npm_and_yarn group with 4 updates in the /packages/playwright-core/bundles/utils directory: [diff](https://github.com/kpdecker/jsdiff), [minimatch](https://github.com/isaacs/minimatch), [yaml](https://github.com/eemeli/yaml) and [brace-expansion](https://github.com/juliangruber/brace-expansion).\nBumps the npm_and_yarn group with 15 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk) | `1.17.3` | `1.26.0` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [yaml](https://github.com/eemeli/yaml) | `2.6.0` | `2.8.3` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.13` |\n| [electron](https://github.com/electron/electron) | `30.5.1` | `35.7.5` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [immutable](https://github.com/immutable-js/immutable-js) | `4.3.7` | `4.3.8` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `6.3.5` | `6.4.1` |\n| [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) | `5.37.3` | `5.53.5` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.3.3` | `3.4.2` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [rollup](https://github.com/rollup/rollup) | `4.40.1` | `4.60.1` |\n\n\nUpdates `fast-xml-parser` from 5.2.5 to 5.5.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/releases\"\u003efast-xml-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003efix typins and matcher instance in callbacks\u003c/h2\u003e\n\u003cp\u003ecombine typings file to avoid configuration changes\npass readonly instance of matcher to the call backs to avoid accidental push/pop call\u003c/p\u003e\n\u003ch2\u003efix bugs of entity parsing and value parsing\u003c/h2\u003e\n\u003cp\u003efix: entity expansion limits\nupdate strnum package to 2.2.0\u003c/p\u003e\n\u003ch2\u003efix entity expansion and incorrect replacement and performance\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.5...v5.5.6\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.5...v5.5.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003esupport onDangerousProperty\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.3...v5.5.5\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.3...v5.5.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eupdate dependecies to fix typings\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.1...v5.5.2\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.1...v5.5.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eintegrate path-expression-matcher\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport path-expression-matcher\u003c/li\u003e\n\u003cli\u003efix: stopNode should not be parsed\u003c/li\u003e\n\u003cli\u003eperformance improvement for stopNode checking\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eSeparate Builder\u003c/h2\u003e\n\u003cp\u003eXML Builder was the part of \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder\"\u003efast-xml-parser\u003c/a\u003e for years. But considering that any bug in builder may false-alarm the users who are only using parser and vice-versa, we have decided to split it into a separate package.\u003c/p\u003e\n\u003ch2\u003eMigration\u003c/h2\u003e\n\u003cp\u003eTo migrate to fast-xml-builder;\u003c/p\u003e\n\u003cp\u003eFrom\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eimport { XMLBuilder } from \u0026quot;fast-xml-parser\u0026quot;;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eTo\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eimport  XMLBuilder  from \u0026quot;fast-xml-builder\u0026quot;;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eXMLBuilder will be removed from current package in any next major version of this library. So better to migrate.\u003c/p\u003e\n\u003ch2\u003esupport strictReservedNames\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.9...v5.3.9\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.9...v5.3.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ehandle non-array input for XML builder \u0026amp;\u0026amp; support maxNestedTags\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport maxNestedTags\u003c/li\u003e\n\u003cli\u003ehandle non-array input for XML builder when preserveOrder is true (By \u003ca href=\"https://github.com/Angelopvtac\"\u003eAngelo Coetzee\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esave use of js properies\n\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.7...v5.3.8\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.7...v5.3.8\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md\"\u003efast-xml-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003eNote: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eNote: Due to some last quick changes on v4, detail of v4.5.3 \u0026amp; v4.5.4 are not updated here. v4.5.4x is the last tag of v4 in github repository. I'm extremely sorry for the confusion\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.9 / 2026-03-23\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ecombine typing files\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e4.5.5 / 2026-03-22\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eapply fixes from v5 (legacy maintenance branch v4-maintenance)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003esupport maxEntityCount\u003c/li\u003e\n\u003cli\u003esupport onDangerousProperty\u003c/li\u003e\n\u003cli\u003esupport maxNestedTags\u003c/li\u003e\n\u003cli\u003ehandle prototype pollution\u003c/li\u003e\n\u003cli\u003efix incorrect entity name replacement\u003c/li\u003e\n\u003cli\u003efix incorrect condition for entity expansion\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.8 / 2026-03-20\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003epass read only matcher in callback\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.7 / 2026-03-19\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix: entity expansion limits\u003c/li\u003e\n\u003cli\u003eupdate strnum package to 2.2.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.6 / 2026-03-16\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eupdate builder dependency\u003c/li\u003e\n\u003cli\u003efix incorrect regex to replace . in entity name\u003c/li\u003e\n\u003cli\u003efix check for entitiy expansion for lastEntities and html entities too\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.5 / 2026-03-13\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003esanitize dangerous tag or attribute name\u003c/li\u003e\n\u003cli\u003eerror on critical property name\u003c/li\u003e\n\u003cli\u003esupport onDangerousProperty option\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.4 / 2026-03-13\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003edeclare Matcher \u0026amp; Expression as unknown so user is not forced to install path-expression-matcher\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.3 / 2026-03-11\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eupgrade builder\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.2 / 2026-03-11\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eupdate dependency to fix typings\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e5.5.1 / 2026-03-10\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efix dependency\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/a8934f903054c582b8ae6a12937fd4b22c380613\"\u003e\u003ccode\u003ea8934f9\u003c/code\u003e\u003c/a\u003e upgrade strnum\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/23d13e40c35386069eec8e28c8bfdaabc3962680\"\u003e\u003ccode\u003e23d13e4\u003c/code\u003e\u003c/a\u003e combine typing files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/0c0a7dc500983c549c2b1c9e1987dfabc69eddda\"\u003e\u003ccode\u003e0c0a7dc\u003c/code\u003e\u003c/a\u003e update maintenance docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/a92a665e00c146a4ea3ff7760f3399e5ed51dfc5\"\u003e\u003ccode\u003ea92a665\u003c/code\u003e\u003c/a\u003e pass read only matcher in call back\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/a21c44123cdf0f8fb5b56d33386ed3be4e180953\"\u003e\u003ccode\u003ea21c441\u003c/code\u003e\u003c/a\u003e update package detail\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/239b64aa1fc5c5455ddebbbb54a187eb68c9fdb7\"\u003e\u003ccode\u003e239b64a\u003c/code\u003e\u003c/a\u003e check for min value for entity exapantion options\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/61cb666d13044b483aa495a6c020789f22e670b4\"\u003e\u003ccode\u003e61cb666\u003c/code\u003e\u003c/a\u003e restrict more properties to be unsafe\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/41abd66adc54cbc6ebea615a9f5396d8582afdb1\"\u003e\u003ccode\u003e41abd66\u003c/code\u003e\u003c/a\u003e performance improvement of reading DOCTYPE\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/3dfcd20c8cffc310335510ff72a211be0672a8dd\"\u003e\u003ccode\u003e3dfcd20\u003c/code\u003e\u003c/a\u003e refactor: performance improvement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/870043e75e78545192bc70950c6286d36c7cdf23\"\u003e\u003ccode\u003e870043e\u003c/code\u003e\u003c/a\u003e update release info\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.2.5...v5.5.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 3.2.2 to 3.2.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.2.3\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/6b6de48\"\u003e6b6de48\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks \u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/6b6de48\"\u003e6b6de48\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/4f6e73f24df42f07d632dec6431ade8eda8d11a6\"\u003e\u003ccode\u003e4f6e73f\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/bd0fea57f35a97b6749a632b19ae5100d6d35729\"\u003e\u003ccode\u003ebd0fea5\u003c/code\u003e\u003c/a\u003e version 3.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/7c3b4b411004c206af8901fa3f8e644127bbf8d9\"\u003e\u003ccode\u003e7c3b4b4\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/a9b8ed999de8f8fff486ac9167514577a0fae323\"\u003e\u003ccode\u003ea9b8ed9\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/6707fde62cbae465a7f11e52760fb994dbc0e0dc\"\u003e\u003ccode\u003e6707fde\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v3.2.2...v3.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `picomatch` from 2.3.1 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/releases\"\u003epicomatch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.2\u003c/h2\u003e\n\u003cp\u003eThis is a security release fixing several security relevant issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: exception when glob pattern contains constructor by \u003ca href=\"https://github.com/Jason3S\"\u003e\u003ccode\u003e@​Jason3S\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/micromatch/picomatch/pull/144\"\u003emicromatch/picomatch#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj\"\u003eCVE-2026-33671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p\"\u003eCVE-2026-33672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ehttps://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md\"\u003epicomatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eAll notable changes to this project will be documented in this file.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e4.0.0 (2024-02-07)\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad text values in parse \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/126\"\u003e#126\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/connor4312\"\u003e\u003ccode\u003e@​connor4312\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove process global to work outside of node \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/129\"\u003e#129\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/styfle\"\u003e\u003ccode\u003e@​styfle\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sideEffects to package.json \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/128\"\u003e#128\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/frandiox\"\u003e\u003ccode\u003e@​frandiox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003eos\u003c/code\u003e, make compatible browser environment. See \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/124\"\u003e#124\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/gwsbhqt\"\u003e\u003ccode\u003e@​gwsbhqt\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.1\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/81cba8d4b767cab3cb29d26eb4f691eed75b73b2\"\u003e\u003ccode\u003e81cba8d\u003c/code\u003e\u003c/a\u003e Publish 2.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/fc1f6b69006e9435caf8fb40d8aff378bc0b7bce\"\u003e\u003ccode\u003efc1f6b6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/eec17aee5428a7249e9ca5adbb8a0d28fa29619b\"\u003e\u003ccode\u003eeec17ae\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/78f8ca4362d9e66cadea97b93e292f10096452ed\"\u003e\u003ccode\u003e78f8ca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/156\"\u003e#156\u003c/a\u003e from micromatch/backport-144\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/3f4f10eaa65bf3a52e8f2999674cd27e11fa3c9b\"\u003e\u003ccode\u003e3f4f10e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/144\"\u003e#144\u003c/a\u003e from Jason3S/jdent-object-properties\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@modelcontextprotocol/sdk` from 1.17.3 to 1.26.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/releases\"\u003e\u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.26.0\u003c/h2\u003e\n\u003cp\u003eAddresses \u0026quot;Sharing server/transport instances can leak cross-client response data\u0026quot; in this GHSA \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/security/advisories/GHSA-345p-7cg4-v4c7\"\u003ehttps://github.com/modelcontextprotocol/typescript-sdk/security/advisories/GHSA-345p-7cg4-v4c7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: bump v1.25.3 for backport fixes by \u003ca href=\"https://github.com/pcarleton\"\u003e\u003ccode\u003e@​pcarleton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1412\"\u003emodelcontextprotocol/typescript-sdk#1412\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(deps): resolve npm audit vulnerabilities and bump dependencies (v1.x backport) by \u003ca href=\"https://github.com/samuv\"\u003e\u003ccode\u003e@​samuv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1382\"\u003emodelcontextprotocol/typescript-sdk#1382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1430\"\u003e#1430\u003c/a\u003e: Client Credentials providers scopes support (backported) by \u003ca href=\"https://github.com/NSeydoux\"\u003e\u003ccode\u003e@​NSeydoux\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1442\"\u003emodelcontextprotocol/typescript-sdk#1442\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: bump version to 1.26.0 by \u003ca href=\"https://github.com/pcarleton\"\u003e\u003ccode\u003e@​pcarleton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1479\"\u003emodelcontextprotocol/typescript-sdk#1479\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samuv\"\u003e\u003ccode\u003e@​samuv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1382\"\u003emodelcontextprotocol/typescript-sdk#1382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/NSeydoux\"\u003e\u003ccode\u003e@​NSeydoux\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1442\"\u003emodelcontextprotocol/typescript-sdk#1442\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/compare/v1.25.3...v1.26.0\"\u003ehttps://github.com/modelcontextprotocol/typescript-sdk/compare/v1.25.3...v1.26.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.25.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[v1.x backport] Use correct schema for client sampling validation when tools are present by \u003ca href=\"https://github.com/olaservo\"\u003e\u003ccode\u003e@​olaservo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1407\"\u003emodelcontextprotocol/typescript-sdk#1407\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent Hono from overriding global Response object (v1.x) by \u003ca href=\"https://github.com/mattzcarey\"\u003e\u003ccode\u003e@​mattzcarey\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1411\"\u003emodelcontextprotocol/typescript-sdk#1411\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/compare/v1.25.2...v1.25.3\"\u003ehttps://github.com/modelcontextprotocol/typescript-sdk/compare/v1.25.2...v1.25.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.25.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: trigger workflow on v1.x branch by \u003ca href=\"https://github.com/felixweinberger\"\u003e\u003ccode\u003e@​felixweinberger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1319\"\u003emodelcontextprotocol/typescript-sdk#1319\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: README badges links destinations by \u003ca href=\"https://github.com/antonpk1\"\u003e\u003ccode\u003e@​antonpk1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/907\"\u003emodelcontextprotocol/typescript-sdk#907\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent ReDoS in UriTemplate regex patterns (v1.x backport) by \u003ca href=\"https://github.com/pcarleton\"\u003e\u003ccode\u003e@​pcarleton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1365\"\u003emodelcontextprotocol/typescript-sdk#1365\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antonpk1\"\u003e\u003ccode\u003e@​antonpk1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/907\"\u003emodelcontextprotocol/typescript-sdk#907\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/compare/1.25.1...v1.25.2\"\u003ehttps://github.com/modelcontextprotocol/typescript-sdk/compare/1.25.1...v1.25.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.25.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003espec types - backwards compatibility changes by \u003ca href=\"https://github.com/KKonstantinov\"\u003e\u003ccode\u003e@​KKonstantinov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1306\"\u003emodelcontextprotocol/typescript-sdk#1306\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: bump version for patch fix by \u003ca href=\"https://github.com/felixweinberger\"\u003e\u003ccode\u003e@​felixweinberger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1307\"\u003emodelcontextprotocol/typescript-sdk#1307\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/compare/1.25.0...1.25.1\"\u003ehttps://github.com/modelcontextprotocol/typescript-sdk/compare/1.25.0...1.25.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.25.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003elist changed handlers on client constructor by \u003ca href=\"https://github.com/mattzcarey\"\u003e\u003ccode\u003e@​mattzcarey\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1206\"\u003emodelcontextprotocol/typescript-sdk#1206\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRole - moved from inline to reusable type by \u003ca href=\"https://github.com/KKonstantinov\"\u003e\u003ccode\u003e@​KKonstantinov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1221\"\u003emodelcontextprotocol/typescript-sdk#1221\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: use versioned npm tag for non-main branch releases by \u003ca href=\"https://github.com/pcarleton\"\u003e\u003ccode\u003e@​pcarleton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1236\"\u003emodelcontextprotocol/typescript-sdk#1236\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eNo automatic completion support unless needed - Revisited yet again by \u003ca href=\"https://github.com/cliffhall\"\u003e\u003ccode\u003e@​cliffhall\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1237\"\u003emodelcontextprotocol/typescript-sdk#1237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Support updating output schema by \u003ca href=\"https://github.com/vincent0426\"\u003e\u003ccode\u003e@​vincent0426\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/pull/1048\"\u003emodelcontextprotocol/typescript-sdk#1048\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/fe9c07b465871394c7069207c86513df9c1194a4\"\u003e\u003ccode\u003efe9c07b\u003c/code\u003e\u003c/a\u003e chore: bump version to 1.26.0 (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1479\"\u003e#1479\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/4f01e7e0708e1a85ccc7dbf39e850005f2d9ff03\"\u003e\u003ccode\u003e4f01e7e\u003c/code\u003e\u003c/a\u003e fix: add non-null assertions for optional setupServer fields in stateful test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/a05be176cabeae1f933b676e3ce024bf02e2314d\"\u003e\u003ccode\u003ea05be17\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/50d9fa3cd12e807e7963bcb9e1548786d3d5d941\"\u003e\u003ccode\u003e50d9fa3\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1430\"\u003e#1430\u003c/a\u003e: Client Credentials providers scopes support (backported) (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1442\"\u003e#1442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/aa81a66556fb4434d8a6d1b70f7ac9fc40b5d325\"\u003e\u003ccode\u003eaa81a66\u003c/code\u003e\u003c/a\u003e fix(deps): resolve npm audit vulnerabilities and bump dependencies (v1.x back...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/6aba0659654e1ff0699844524595922a61e44cb9\"\u003e\u003ccode\u003e6aba065\u003c/code\u003e\u003c/a\u003e chore: bump v1.25.3 for backport fixes (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1412\"\u003e#1412\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/6e8f7e1a43a819ae230373c62b82228dafd892c6\"\u003e\u003ccode\u003e6e8f7e1\u003c/code\u003e\u003c/a\u003e fix: prevent Hono from overriding global Response object (v1.x) (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1411\"\u003e#1411\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/12ae856cee6ca58499cce24e80f650e78a0c7610\"\u003e\u003ccode\u003e12ae856\u003c/code\u003e\u003c/a\u003e [v1.x backport] Use correct schema for client sampling validation when tools ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/b392f02ffcf37c088dbd114fedf25026ec3913d3\"\u003e\u003ccode\u003eb392f02\u003c/code\u003e\u003c/a\u003e fix: prevent ReDoS in UriTemplate regex patterns (v1.x backport) (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/1365\"\u003e#1365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/commit/a0c9b13484748acab9e5dc8317a7e89c06b52e37\"\u003e\u003ccode\u003ea0c9b13\u003c/code\u003e\u003c/a\u003e fix: README badges links destinations (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/typescript-sdk/issues/907\"\u003e#907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/modelcontextprotocol/typescript-sdk/compare/1.17.3...v1.26.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~pcarleton\"\u003epcarleton\u003c/a\u003e, a new releaser for \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 8.18.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `body-parser` from 2.2.0 to 2.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/body-parser/releases\"\u003ebody-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README links by \u003ca href=\"https://github.com/efekrskl\"\u003e\u003ccode\u003e@​efekrskl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/673\"\u003eexpressjs/body-parser#673\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: release notes for the v1.20.4 release by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/674\"\u003eexpressjs/body-parser#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update URL-encoded parser description to include ISO-8859-1 encoding support by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/679\"\u003eexpressjs/body-parser#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: use standard jsdoc tags everywhere by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/677\"\u003eexpressjs/body-parser#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: qs@^6.14.1 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/689\"\u003eexpressjs/body-parser#689\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(json): simplify strict mode error string construction by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/693\"\u003eexpressjs/body-parser#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 2.2.2 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/691\"\u003eexpressjs/body-parser#691\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/efekrskl\"\u003e\u003ccode\u003e@​efekrskl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/673\"\u003eexpressjs/body-parser#673\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/body-parser/compare/v2.2.1...v2.2.2\"\u003ehttps://github.com/expressjs/body-parser/compare/v2.2.1...v2.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.2.1\u003c/h2\u003e\n\u003ch2\u003eImportant: Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-13466\"\u003eCVE-2025-13466\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/body-parser/security/advisories/GHSA-wqch-xfxh-vrr4\"\u003eGHSA-wqch-xfxh-vrr4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: add dependabot by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/593\"\u003eexpressjs/body-parser#593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: use full SHAs for github action versions by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/594\"\u003eexpressjs/body-parser#594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: type-is@^2.0.1 by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/599\"\u003eexpressjs/body-parser#599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4.3.0 to 4.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/609\"\u003eexpressjs/body-parser#609\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.13 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/610\"\u003eexpressjs/body-parser#610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump eslint-plugin-promise from 6.1.1 to 6.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/611\"\u003eexpressjs/body-parser#611\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump eslint-plugin-import from 2.27.5 to 2.31.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/613\"\u003eexpressjs/body-parser#613\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump eslint-plugin-markdown from 3.0.0 to 3.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/612\"\u003eexpressjs/body-parser#612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add codeql github workflows scanning by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/614\"\u003eexpressjs/body-parser#614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: update CodeQL config to ignore the test directory by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/615\"\u003eexpressjs/body-parser#615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/download-artifact from 4.2.1 to 4.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/620\"\u003eexpressjs/body-parser#620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.16 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/619\"\u003eexpressjs/body-parser#619\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): unpin devDependencies by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/616\"\u003eexpressjs/body-parser#616\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add node.js 24 to test matrix by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/621\"\u003eexpressjs/body-parser#621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.16 to 3.28.18 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/623\"\u003eexpressjs/body-parser#623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/624\"\u003eexpressjs/body-parser#624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: add funding to package.json by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/617\"\u003eexpressjs/body-parser#617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/625\"\u003eexpressjs/body-parser#625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.2 to 3.29.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/630\"\u003eexpressjs/body-parser#630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: move common request validation to read function by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/600\"\u003eexpressjs/body-parser#600\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: bump iconv-lite by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/631\"\u003eexpressjs/body-parser#631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edoc: pull beta changelog forward into 2.0.0 by \u003ca href=\"https://github.com/jonchurch\"\u003e\u003ccode\u003e@​jonchurch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/629\"\u003eexpressjs/body-parser#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: optimize raw and text parsers with shared passthrough function by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/634\"\u003eexpressjs/body-parser#634\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/640\"\u003eexpressjs/body-parser#640\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/639\"\u003eexpressjs/body-parser#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 4.4.0 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/636\"\u003eexpressjs/body-parser#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/download-artifact from 4.3.0 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/637\"\u003eexpressjs/body-parser#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.7 to 3.30.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/638\"\u003eexpressjs/body-parser#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: raw-body@^3.0.1 by \u003ca href=\"https://github.com/Phillip9587\"\u003e\u003ccode\u003e@​Phillip9587\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/body-parser/pull/641\"\u003eexpressjs/body-parser#641\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/body-parser/blob/master/HISTORY.md\"\u003ebody-parser's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e2.2.2 / 2026-01-07\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003edeps: qs@^6.14.1\u003c/li\u003e\n\u003cli\u003erefactor(json): simplify strict mode error string construction\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e2.2.1 / 2025-11-24\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eSecurity fix for \u003ca href=\"https://github.com/expressjs/body-parser/security/advisories/GHSA-wqch-xfxh-vrr4\"\u003eGHSA-wqch-xfxh-vrr4\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps:\n\u003cul\u003e\n\u003cli\u003etype-is@^2.0.1\u003c/li\u003e\n\u003cli\u003eiconv-lite@^0.7.0\n\u003cul\u003e\n\u003cli\u003eHandle split surrogate pairs when encoding UTF-8\u003c/li\u003e\n\u003cli\u003eAvoid false positives in \u003ccode\u003eencodingExists\u003c/code\u003e by using prototype-less objects\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eraw-body@^3.0.1\u003c/li\u003e\n\u003cli\u003edebug@^4.4.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/3d248660b2e8b66732b232d7c758517fbf2420a6\"\u003e\u003ccode\u003e3d24866\u003c/code\u003e\u003c/a\u003e 2.2.2 (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/691\"\u003e#691\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/8474a984c3ba36a1b4328ce019833b99caa0f08f\"\u003e\u003ccode\u003e8474a98\u003c/code\u003e\u003c/a\u003e refactor(json): simplify strict mode error string construction (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/693\"\u003e#693\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/03f17c2538552a57e6be537afca8c7587bd40aaa\"\u003e\u003ccode\u003e03f17c2\u003c/code\u003e\u003c/a\u003e deps: qs@^6.14.1 (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/689\"\u003e#689\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/ea1f25e503c1b2f7ba6f8562724ae0fcd247fb75\"\u003e\u003ccode\u003eea1f25e\u003c/code\u003e\u003c/a\u003e docs: use standard jsdoc tags everywhere (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/d7deef8ec61307fa28c22bc443cf8ed2f267945a\"\u003e\u003ccode\u003ed7deef8\u003c/code\u003e\u003c/a\u003e docs: update URL-encoded parser description to include ISO-8859-1 encoding su...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/b6f52aabc65137c5227c8a462bddb761daeb96e7\"\u003e\u003ccode\u003eb6f52aa\u003c/code\u003e\u003c/a\u003e docs: release notes for the v1.20.4 release (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/674\"\u003e#674\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/2965ca4af4883109cb2f651f4ce12da310902a0c\"\u003e\u003ccode\u003e2965ca4\u003c/code\u003e\u003c/a\u003e docs: update links (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/673\"\u003e#673\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/d96b63da8d7445de317736471633bac83ec76cbb\"\u003e\u003ccode\u003ed96b63d\u003c/code\u003e\u003c/a\u003e 2.2.1 (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/659\"\u003e#659\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/b204886a6744b0b6d297cd0e849d75de836f3b63\"\u003e\u003ccode\u003eb204886\u003c/code\u003e\u003c/a\u003e sec: security patch for CVE-2025-13466\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/body-parser/commit/e20e3512e085c1162e8ffe36ac65c705a8017251\"\u003e\u003ccode\u003ee20e351\u003c/code\u003e\u003c/a\u003e feat: remove \u003ccode\u003ehistory.md\u003c/code\u003e from being packaged on publish (\u003ca href=\"https://redirect.github.com/expressjs/body-parser/issues/660\"\u003e#660\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/expressjs/body-parser/compare/v2.2.0...v2.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `path-to-regexp` from 8.2.0 to 8.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/pillarjs/path-to-regexp/releases\"\u003epath-to-regexp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.4.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eImportant\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-4926\"\u003eCVE-2026-4926\u003c/a\u003e (\u003ca href=\"https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-j3q9-mxjg-w52f\"\u003eGHSA-j3q9-mxjg-w52f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-4923\"\u003eCVE-2026-4923\u003c/a\u003e (\u003ca href=\"https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-27v5-c462-wpq7\"\u003eGHSA-27v5-c462-wpq7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRestricts wildcard backtracking when using more than 1 in a path (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/pull/421\"\u003epillarjs/path-to-regexp#421\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDedupes regex prefixes (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/pull/422\"\u003epillarjs/path-to-regexp#422\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThis will result in shorter regular expressions for some cases using optional groups\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eRejects large optional route combinations (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/pull/424\"\u003epillarjs/path-to-regexp#424\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eWhen using groups such as \u003ccode\u003e/users{/delete}\u003c/code\u003e it will restrict the number of generated combinations to \u0026lt; 256, equivalent to 8 top-level optional groups and unlikely to occur in a real world application, but avoids exploding the regex size for applications that accept user created routes\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.3.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd custom error class (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/398\"\u003e#398\u003c/a\u003e)  2a7f2a4\u003c/li\u003e\n\u003cli\u003eAllow plain objects for \u003ccode\u003eTokenData\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/391\"\u003e#391\u003c/a\u003e)  687a9bb\u003c/li\u003e\n\u003cli\u003eEscape text should escape backslash (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/390\"\u003e#390\u003c/a\u003e)  a4a8552\u003c/li\u003e\n\u003cli\u003eImproved error messages and stack size (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/363\"\u003e#363\u003c/a\u003e)  a6bdf40\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eOther\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eMinifying the parser\n\u003cul\u003e\n\u003cli\u003ePR (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/401\"\u003e#401\u003c/a\u003e)  9df2448\u003c/li\u003e\n\u003cli\u003ePR (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/395\"\u003e#395\u003c/a\u003e)  4a91505\u003c/li\u003e\n\u003cli\u003eShaving some bytes  d63f44b\u003c/li\u003e\n\u003cli\u003eRemove optional operator  973d15c\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/compare/v8.2.0...v8.3.0\"\u003ehttps://github.com/pillarjs/path-to-regexp/compare/v8.2.0...v8.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/34cb451ddaeea4783a2fe60579ffb3e4ccfc73a7\"\u003e\u003ccode\u003e34cb451\u003c/code\u003e\u003c/a\u003e 8.4.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/22a967901afc8b2b42eefe456faa7b6773dcc415\"\u003e\u003ccode\u003e22a9679\u003c/code\u003e\u003c/a\u003e Reject large optional route combinations (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/424\"\u003e#424\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/8881a88930cf96ebaa00412a8e87cdd601bb3f3d\"\u003e\u003ccode\u003e8881a88\u003c/code\u003e\u003c/a\u003e Byte optimization (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/423\"\u003e#423\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/43669ac637fe70fad33693d145a74d98179152ce\"\u003e\u003ccode\u003e43669ac\u003c/code\u003e\u003c/a\u003e Dedupe regex prefixes (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/422\"\u003e#422\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/48646547da685c1ccb76a95fe23373975a91e200\"\u003e\u003ccode\u003e4864654\u003c/code\u003e\u003c/a\u003e Restrict repeated wildcard backtracking (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/421\"\u003e#421\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/05a5a973702a863fb69415294503d13cb9d18b20\"\u003e\u003ccode\u003e05a5a97\u003c/code\u003e\u003c/a\u003e Remove dependabot config (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/404\"\u003e#404\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/5b635cd1bd1d6d7ed6023d8834ae6e6a1e22461f\"\u003e\u003ccode\u003e5b635cd\u003c/code\u003e\u003c/a\u003e Remove \u003ccode\u003epackage-lock.json\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/407\"\u003e#407\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/c4f5b3fc10782a5de2bee55c3e40e5af890c9cad\"\u003e\u003ccode\u003ec4f5b3f\u003c/code\u003e\u003c/a\u003e 8.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/6587c812746cba94855867612f3a719bb25f794e\"\u003e\u003ccode\u003e6587c81\u003c/code\u003e\u003c/a\u003e Move parameter name errors up in docs (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/402\"\u003e#402\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/9df2448fdfca9d2957cf47a1777b5deda9be18cf\"\u003e\u003ccode\u003e9df2448\u003c/code\u003e\u003c/a\u003e Remove more bytes from parser (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/401\"\u003e#401\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/pillarjs/path-to-regexp/compare/v8.2.0...v8.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.14.0 to 6.15.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.15.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in an array (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/425\"\u003e#425\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ljharb/qs/issues/122\"\u003e#122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/514\"\u003e#514\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d9b4c66303375493c68c42d68e363e50b1753771\"\u003e\u003ccode\u003ed9b4c66\u003c/code\u003e\u003c/a\u003e v6.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cb41a545a32422ad3044584d3c4fa8f953552605\"\u003e\u003ccode\u003ecb41a54\u003c/code\u003e\u003c/a\u003e [New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003estrictMerge\u003c/code\u003e option to wrap object/primitive conflicts in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/88e15636da953397262bd3014ab8b0d17d5c8039\"\u003e\u003ccode\u003e88e1563\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eduplicates\u003c/code\u003e option should not apply to bracket notation keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/9d441d270486c3cc77f17289a9e0921c0f742aff\"\u003e\u003ccode\u003e9d441d2\u003c/code\u003e\u003c/a\u003e Merge backport release tags v6.0.6–v6.13.3 into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/85cc8cac6b444c9b4cb1172a151ac8fdee0a0301\"\u003e\u003ccode\u003e85cc8ca\u003c/code\u003e\u003c/a\u003e v6.12.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/ffc12aa71030f508ab28cccbb1987424abf52379\"\u003e\u003ccode\u003effc12aa\u003c/code\u003e\u003c/a\u003e v6.11.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/0506b11e457f6b3847b1dcf65b5c11c0eaf5dfb9\"\u003e\u003ccode\u003e0506b11\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6a37fafc75ce8a3d00ef611c9d7acfccc6ec449c\"\u003e\u003ccode\u003e6a37faf\u003c/code\u003e\u003c/a\u003e [actions] update reusable workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/8e8df5a3b147ec2f86830c2e3de1016a7ecbc18b\"\u003e\u003ccode\u003e8e8df5a\u003c/code\u003e\u003c/a\u003e [Fix] fix regressions from robustness refactor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/d60bab35a42b3c789d7a1461ea176eaee74eb751\"\u003e\u003ccode\u003ed60bab3\u003c/code\u003e\u003c/a\u003e v6.10.7\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.14.0...v6.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `picomatch` from 2.3.1 to 2.3.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/releases\"\u003epicomatch's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.3.2\u003c/h2\u003e\n\u003cp\u003eThis is a security release fixing several security relevant issues.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: exception when glob pattern contains constructor by \u003ca href=\"https://github.com/Jason3S\"\u003e\u003ccode\u003e@​Jason3S\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/micromatch/picomatch/pull/144\"\u003emicromatch/picomatch#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-c2c7-rcm5-vvqj\"\u003eCVE-2026-33671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for \u003ca href=\"https://github.com/micromatch/picomatch/security/advisories/GHSA-3v7f-55p6-f55p\"\u003eCVE-2026-33672\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ehttps://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md\"\u003epicomatch's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eRelease history\u003c/h1\u003e\n\u003cp\u003e\u003cstrong\u003eAll notable changes to this project will be documented in this file.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThe format is based on \u003ca href=\"http://keepachangelog.com/en/1.0.0/\"\u003eKeep a Changelog\u003c/a\u003e\nand this project adheres to \u003ca href=\"http://semver.org/spec/v2.0.0.html\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eChangelogs are for humans, not machines.\u003c/li\u003e\n\u003cli\u003eThere should be an entry for every single version.\u003c/li\u003e\n\u003cli\u003eThe same types of changes should be grouped.\u003c/li\u003e\n\u003cli\u003eVersions and sections should be linkable.\u003c/li\u003e\n\u003cli\u003eThe latest version comes first.\u003c/li\u003e\n\u003cli\u003eThe release date of each versions is displayed.\u003c/li\u003e\n\u003cli\u003eMention whether you follow Semantic Versioning.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eChangelog entries are classified using the following labels \u003cem\u003e(from \u003ca href=\"http://keepachangelog.com/\"\u003ekeep-a-changelog\u003c/a\u003e\u003c/em\u003e):\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAdded\u003c/code\u003e for new features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChanged\u003c/code\u003e for changes in existing functionality.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eDeprecated\u003c/code\u003e for soon-to-be removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eRemoved\u003c/code\u003e for now removed features.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eFixed\u003c/code\u003e for any bug fixes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eSecurity\u003c/code\u003e in case of vulnerabilities.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e4.0.0 (2024-02-07)\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad text values in parse \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/126\"\u003e#126\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/connor4312\"\u003e\u003ccode\u003e@​connor4312\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove process global to work outside of node \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/129\"\u003e#129\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/styfle\"\u003e\u003ccode\u003e@​styfle\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd sideEffects to package.json \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/128\"\u003e#128\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/frandiox\"\u003e\u003ccode\u003e@​frandiox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved \u003ccode\u003eos\u003c/code\u003e, make compatible browser environment. See \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/124\"\u003e#124\u003c/a\u003e, thanks to \u003ca href=\"https://github.com/gwsbhqt\"\u003e\u003ccode\u003e@​gwsbhqt\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.1\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/81cba8d4b767cab3cb29d26eb4f691eed75b73b2\"\u003e\u003ccode\u003e81cba8d\u003c/code\u003e\u003c/a\u003e Publish 2.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/fc1f6b69006e9435caf8fb40d8aff378bc0b7bce\"\u003e\u003ccode\u003efc1f6b6\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/eec17aee5428a7249e9ca5adbb8a0d28fa29619b\"\u003e\u003ccode\u003eeec17ae\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/78f8ca4362d9e66cadea97b93e292f10096452ed\"\u003e\u003ccode\u003e78f8ca4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/156\"\u003e#156\u003c/a\u003e from micromatch/backport-144\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/micromatch/picomatch/commit/3f4f10eaa65bf3a52e8f2999674cd27e11fa3c9b\"\u003e\u003ccode\u003e3f4f10e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/micromatch/picomatch/issues/144\"\u003e#144\u003c/a\u003e from Jason3S/jdent-object-properties\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `yauzl` from 3.2.0 to 3.2.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/c4695215b05c6adffda613b9051a2a85429b33fe\"\u003e\u003ccode\u003ec469521\u003c/code\u003e\u003c/a\u003e version 3.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/00c561b8cf1ff92e076f7087ac6287e510d4af54\"\u003e\u003ccode\u003e00c561b\u003c/code\u003e\u003c/a\u003e fix bounds checking logic on NtfsTimestamp\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/277b294d23fc1c10ff772fa5e858830ca79d9892\"\u003e\u003ccode\u003e277b294\u003c/code\u003e\u003c/a\u003e comment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/de292f220268473eb20aef64b0a77faa9d004d9a\"\u003e\u003ccode\u003ede292f2\u003c/code\u003e\u003c/a\u003e streamed zip file test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/e00f13978fe284d60199014f567fb9efc4df8499\"\u003e\u003ccode\u003ee00f139\u003c/code\u003e\u003c/a\u003e truncate long test file names for eCryptfs compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/d98e05247dc7b95f5f0bcd336a81aca6d8563b95\"\u003e\u003ccode\u003ed98e052\u003c/code\u003e\u003c/a\u003e fix name of Info-ZIP\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thejoshwolfe/yauzl/commit/a8951a29884b9506b695575037bee608b09592cc\"\u003e\u003ccode\u003ea8951a2\u003c/code\u003e\u003c/a\u003e update readme\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/thejoshwolfe/yauzl/compare/3.2.0...3.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diff` from 7.0.0 to 8.0.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/631\"\u003e#631\u003c/a\u003e - \u003cstrong\u003efix support for using an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e with \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e. This has been almost completely broken since the feature was added in v6.0.0, since it would outright crash on any text that featured two consecutive newlines between a pair of words (a very common case).\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/635\"\u003e#635\u003c/a\u003e - \u003cstrong\u003esmall tweaks to tokenization behaviour of \u003ccode\u003ediffWords\u003c/code\u003e\u003c/strong\u003e when used \u003cem\u003ewithout\u003c/em\u003e an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e. Specifically, the soft hyphen (U+00AD) is no longer considered to be a word break, and the multiplication and division signs (\u003ccode\u003e×\u003c/code\u003e and \u003ccode\u003e÷\u003c/code\u003e) are now treated as punctuation instead of as letters / word characters.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/641\"\u003e#641\u003c/a\u003e - \u003cstrong\u003ethe format of file headers in \u003ccode\u003ecreatePatch\u003c/code\u003e etc. patches can now be customised somewhat\u003c/strong\u003e. It now takes a \u003ccode\u003eheaderOptions\u003c/code\u003e option that can be used to disable the file headers entirely, or omit the \u003ccode\u003eIndex:\u003c/code\u003e line and/or the underline. In particular, this was motivated by a request to make jsdiff patches compatible with react-diff-view, which they now are if produced with \u003ccode\u003eheaderOptions: FILE_HEADERS_ONLY\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003e#647\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003e#649\u003c/a\u003e - \u003cstrong\u003efix denial-of-service vulnerabilities in \u003ccode\u003eparsePatch\u003c/code\u003e whereby adversarial input could cause a memory-leaking infinite loop, typically crashing the calling process\u003c/strong\u003e. Also fixed ReDOS vulnerabilities whereby adversarially-crafted patch headers could take cubic time to parse. Now, \u003ccode\u003eparsePatch\u003c/code\u003e should reliably take linear time. (Handling of headers that include the line break characters \u003ccode\u003e\\r\u003c/code\u003e, \u003ccode\u003e\\u2028\u003c/code\u003e, or \u003ccode\u003e\\u2029\u003c/code\u003e in non-trailing positions is also now more reasonable as side effect of the fix.)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/616\"\u003e#616\u003c/a\u003e \u003cstrong\u003eRestored compatibility of \u003ccode\u003ediffSentences\u003c/code\u003e with old Safari versions.\u003c/strong\u003e This was broken in 8.0.0 by the introduction of a regex with a \u003ca href=\"https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Regular_expressions/Lookbehind_assertion\"\u003elookbehind assertion\u003c/a\u003e; these weren't supported in Safari prior to version 16.4.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/612\"\u003e#612\u003c/a\u003e \u003cstrong\u003eImproved tree shakeability\u003c/strong\u003e by marking the built CJS and ESM packages with \u003ccode\u003esideEffects: false\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/610\"\u003e#610\u003c/a\u003e \u003cstrong\u003eFixes types for \u003ccode\u003ediffJson\u003c/code\u003e which were broken by 8.0.0\u003c/strong\u003e. The new bundled types in 8.0.0 only allowed \u003ccode\u003ediffJson\u003c/code\u003e to be passed string arguments, but it should've been possible to pass either strings or objects (and now is). Thanks to Josh Kelley for the fix.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/580\"\u003e#580\u003c/a\u003e \u003cstrong\u003eMultiple tweaks to \u003ccode\u003ediffSentences\u003c/code\u003e\u003c/strong\u003e:\n\u003cul\u003e\n\u003cli\u003etokenization no longer takes quadratic time on pathological inputs (reported as a ReDOS vulnerability by Snyk); is now linear instead\u003c/li\u003e\n\u003cli\u003ethe final sentence in the string is now handled the same by the tokenizer regardless of whether it has a trailing punctuation mark or not. (Previously, \u0026quot;foo. bar.\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; \u0026quot;, \u0026quot;bar.\u0026quot;]\u003c/code\u003e but \u0026quot;foo. bar\u0026quot; tokenized to \u003ccode\u003e[\u0026quot;foo.\u0026quot;, \u0026quot; bar\u0026quot;]\u003c/code\u003e - i.e. whether the space between sentences was treated as a separate token depended upon whether the final sentence had trailing punctuation or not. This was arbitrary and surprising; it is no longer the case.)\u003c/li\u003e\n\u003cli\u003ein a string that starts with a sentence end, like \u0026quot;! hello.\u0026quot;, the \u0026quot;!\u0026quot; is now treated as a separate sentence\u003c/li\u003e\n\u003cli\u003ethe README now correctly documents the tokenization behaviour (it was wrong before)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/581\"\u003e#581\u003c/a\u003e - \u003cstrong\u003efixed some regex operations used for tokenization in \u003ccode\u003ediffWords\u003c/code\u003e taking O(n^2) time\u003c/strong\u003e in pathological cases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/595\"\u003e#595\u003c/a\u003e - \u003cstrong\u003efixed a crash in patch creation functions when handling a single hunk consisting of a very large number (e.g. \u0026gt;130k) of lines\u003c/strong\u003e. (This was caused by spreading indefinitely-large arrays to \u003ccode\u003e.push()\u003c/code\u003e using \u003ccode\u003e.apply\u003c/code\u003e or the spread operator and hitting the JS-implementation-specific limit on the maximum number of arguments to a function, as shown at \u003ca href=\"https://stackoverflow.com/a/56809779/1709587\"\u003ehttps://stackoverflow.com/a/56809779/1709587\u003c/a\u003e; thus the exact threshold to hit the error will depend on the environment in which you were running JsDiff.)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/596\"\u003e#596\u003c/a\u003e - \u003cstrong\u003eremoved the \u003ccode\u003emerge\u003c/code\u003e function\u003c/strong\u003e. Previously JsDiff included an undocumented function called \u003ccode\u003emerge\u003c/code\u003e that was meant to, in some sense, merge patches. It had at least a couple of serious bugs that could lead to it returning unambiguously wrong results, and it was difficult to simply \u0026quot;fix\u0026quot; because it was \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/181#issuecomment-2198319542\"\u003eunclear precisely what it was meant to do\u003c/a\u003e. For now, the fix is to remove it entirely.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/591\"\u003e#591\u003c/a\u003e - JsDiff's source code has been rewritten in TypeScript. This change entails the following changes for end users:\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003ethe \u003ccode\u003ediff\u003c/code\u003e package on npm now includes its own TypeScript type definitions\u003c/strong\u003e. Users who previously used the \u003ccode\u003e@types/diff\u003c/code\u003e npm package from DefinitelyTyped should remove that dependency when upgrading JsDiff to v8.\u003c/p\u003e\n\u003cp\u003eNote that the transition from the...\n\n_Description has been truncated_","html_url":"https://github.com/EthanThePhoenix38/playwright/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/EthanThePhoenix38%2Fplaywright/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-03-26T05:57:55.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"4140904914","node_id":"PR_kwDOI8dS2c7Nl1Wx","number":87,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 1 directory with 23 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-26T23:26:36.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-26T05:57:55.000Z","updated_at":"2026-03-26T23:26:38.000Z","time_to_close":62921,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":23,"packages":[{"name":"tsup","old_version":"7.1.0","new_version":"8.3.5","repository_url":"https://github.com/egoist/tsup"},{"name":"@nestjs/common","old_version":"10.4.4","new_version":"10.4.16","repository_url":"https://github.com/nestjs/nest"},{"name":"@apollo/server","old_version":"4.11.3","new_version":"5.4.0","repository_url":"https://github.com/apollographql/apollo-server"},{"name":"nodemailer","old_version":"7.0.5","new_version":"7.0.11","repository_url":"https://github.com/nodemailer/nodemailer"},{"name":"mjml","old_version":"4.15.3","new_version":"4.18.0","repository_url":"https://github.com/mjmlio/mjml"},{"name":"@babel/traverse","old_version":"7.21.3","new_version":"7.29.0","repository_url":"https://github.com/babel/babel"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"axios","old_version":"1.3.4","new_version":"1.13.6","repository_url":"https://github.com/axios/axios"},{"name":"ejs","old_version":"3.1.9","new_version":"3.1.10","repository_url":"https://github.com/mde/ejs"},{"name":"flatted","old_version":"3.2.7","new_version":"3.4.2","repository_url":"https://github.com/WebReflection/flatted"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"picomatch","old_version":"2.3.1","new_version":"2.3.2","repository_url":"https://github.com/micromatch/picomatch"},{"name":"semver","old_version":"5.7.1","new_version":"5.7.2","repository_url":"https://github.com/npm/node-semver"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"tar","old_version":"6.1.13","new_version":"6.2.1","repository_url":"https://github.com/isaacs/node-tar"},{"name":"validator","old_version":"13.15.15","new_version":"13.15.26","repository_url":"https://github.com/validatorjs/validator.js"},{"name":"vite","old_version":"7.1.2","new_version":"7.3.1","repository_url":"https://github.com/vitejs/vite"},{"name":"ws","old_version":"7.5.9","new_version":"7.5.10","repository_url":"https://github.com/websockets/ws"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 19 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [tsup](https://github.com/egoist/tsup) | `7.1.0` | `8.3.5` |\n| [@nestjs/common](https://github.com/nestjs/nest/tree/HEAD/packages/common) | `10.4.4` | `10.4.16` |\n| [@apollo/server](https://github.com/apollographql/apollo-server/tree/HEAD/packages/server) | `4.11.3` | `5.4.0` |\n| [nodemailer](https://github.com/nodemailer/nodemailer) | `7.0.5` | `7.0.11` |\n| [mjml](https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml) | `4.15.3` | `4.18.0` |\n| [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.21.3` | `7.29.0` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [axios](https://github.com/axios/axios) | `1.3.4` | `1.13.6` |\n| [ejs](https://github.com/mde/ejs) | `3.1.9` | `3.1.10` |\n| [flatted](https://github.com/WebReflection/flatted) | `3.2.7` | `3.4.2` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [picomatch](https://github.com/micromatch/picomatch) | `2.3.1` | `2.3.2` |\n| [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.13` | `6.2.1` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.15.15` | `13.15.26` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.1.2` | `7.3.1` |\n| [ws](https://github.com/websockets/ws) | `7.5.9` | `7.5.10` |\n\n\nUpdates `tsup` from 7.1.0 to 8.3.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/egoist/tsup/releases\"\u003etsup's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.3.5\u003c/h2\u003e\n\u003ch3\u003e   🐞 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRun \u003ccode\u003eexperimentalDts\u003c/code\u003e only once  -  by \u003ca href=\"https://github.com/aryaemami59\"\u003e\u003ccode\u003e@​aryaemami59\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1236\"\u003eegoist/tsup#1236\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/fddd451\"\u003e\u003c!-- raw HTML omitted --\u003e(fddd4)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.4...v8.3.5\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.4\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eNo significant changes\u003c/em\u003e\u003c/p\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.3...v8.3.4\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eNo significant changes\u003c/em\u003e\u003c/p\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.2...v8.3.3\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.1\u003c/h2\u003e\n\u003ch3\u003e   🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ees2024\u003c/code\u003e target  -  by \u003ca href=\"https://github.com/sxzz\"\u003e\u003ccode\u003e@​sxzz\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/4c8cd7f\"\u003e\u003c!-- raw HTML omitted --\u003e(4c8cd)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e   🐞 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport TS 5.6 for svelte  -  by \u003ca href=\"https://github.com/sxzz\"\u003e\u003ccode\u003e@​sxzz\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/28b9ce9\"\u003e\u003c!-- raw HTML omitted --\u003e(28b9c)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eneutral\u003c/code\u003e value to platform options in \u003ccode\u003eschema.json\u003c/code\u003e  -  by \u003ca href=\"https://github.com/venables\"\u003e\u003ccode\u003e@​venables\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/982\"\u003eegoist/tsup#982\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/a03db4c\"\u003e\u003c!-- raw HTML omitted --\u003e(a03db)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWider restriction for \u003ccode\u003etarget\u003c/code\u003e option  -  by \u003ca href=\"https://github.com/odanado\"\u003e\u003ccode\u003e@​odanado\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1118\"\u003eegoist/tsup#1118\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/1979b06\"\u003e\u003c!-- raw HTML omitted --\u003e(1979b)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eterser\u003c/code\u003e value to \u003ccode\u003eminify\u003c/code\u003e option in \u003ccode\u003eschema.json\u003c/code\u003e  -  by \u003ca href=\"https://github.com/damienbutt\"\u003e\u003ccode\u003e@​damienbutt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/991\"\u003eegoist/tsup#991\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/34951bf\"\u003e\u003c!-- raw HTML omitted --\u003e(34951)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003enewlineKind\u003c/code\u003e to \u003ccode\u003elf\u003c/code\u003e for \u003ccode\u003eexperimentalDts\u003c/code\u003e  -  by \u003ca href=\"https://github.com/aryaemami59\"\u003e\u003ccode\u003e@​aryaemami59\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1234\"\u003eegoist/tsup#1234\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/4584b89\"\u003e\u003c!-- raw HTML omitted --\u003e(4584b)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable rollup \u003ccode\u003eoutput.compact\u003c/code\u003e when minify is enabled  -  by \u003ca href=\"https://github.com/hyrious\"\u003e\u003ccode\u003e@​hyrious\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1232\"\u003eegoist/tsup#1232\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/9cc86d6\"\u003e\u003c!-- raw HTML omitted --\u003e(9cc86)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eNode16\u003c/code\u003e and \u003ccode\u003eNodeNext\u003c/code\u003e module resolution in \u003ccode\u003eexperimentalDts\u003c/code\u003e  -  by \u003ca href=\"https://github.com/aryaemami59\"\u003e\u003ccode\u003e@​aryaemami59\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1225\"\u003eegoist/tsup#1225\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/41c98ff\"\u003e\u003c!-- raw HTML omitted --\u003e(41c98)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.0...v8.3.1\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/egoist/tsup/compare/v8.2.4...v8.3.0\"\u003e8.3.0\u003c/a\u003e (2024-09-17)\u003c/h1\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ccode\u003eexperimentalDts\u003c/code\u003e file cleaning and watching (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1199\"\u003e#1199\u003c/a\u003e) (\u003ca href=\"https://github.com/egoist/tsup/commit/76dc18b7036c408e6fc5254e3eeb3430f65c7866\"\u003e76dc18b\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for \u003ccode\u003ects\u003c/code\u003e and \u003ccode\u003emts\u003c/code\u003e config files (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1178\"\u003e#1178\u003c/a\u003e) (\u003ca href=\"https://github.com/egoist/tsup/commit/ec811b3b7d22479c230292a024f1dee5d171b0ea\"\u003eec811b3\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd support for async \u003ccode\u003einjectStyle\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1193\"\u003e#1193\u003c/a\u003e) (\u003ca href=\"https://github.com/egoist/tsup/commit/f25a9db77d22c91ea8f6bd1ed31ea8415d0a7d5d\"\u003ef25a9db\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev8.2.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/egoist/tsup/compare/v8.2.3...v8.2.4\"\u003e8.2.4\u003c/a\u003e (2024-08-02)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/cd03e1e00ec2bd6676ae1837cbc7e618ab6a2362\"\u003e\u003ccode\u003ecd03e1e\u003c/code\u003e\u003c/a\u003e chore: release v8.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/fddd451c3d63cd5f851a0e7ab091c0550e24f213\"\u003e\u003ccode\u003efddd451\u003c/code\u003e\u003c/a\u003e fix: run \u003ccode\u003eexperimentalDts\u003c/code\u003e only once (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1236\"\u003e#1236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/21b119374880e9d9109c5d8658429678a1de8f45\"\u003e\u003ccode\u003e21b1193\u003c/code\u003e\u003c/a\u003e chore: release v8.3.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/580e03dc996107c4790c64df5b9ca6cebb4b7de9\"\u003e\u003ccode\u003e580e03d\u003c/code\u003e\u003c/a\u003e ci: fix release workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/01b38f295f6e1fa240676213817a9d315fdffd60\"\u003e\u003ccode\u003e01b38f2\u003c/code\u003e\u003c/a\u003e chore: release v8.3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/4f5b71e42887a5147ee6d95d2d7f89f789887f0d\"\u003e\u003ccode\u003e4f5b71e\u003c/code\u003e\u003c/a\u003e ci: fix release workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/e80dad6889366941e015faadce05cbe2eeca3c17\"\u003e\u003ccode\u003ee80dad6\u003c/code\u003e\u003c/a\u003e chore: release v8.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/f4af79a1b890307a28d0d986a0c06dc92192c222\"\u003e\u003ccode\u003ef4af79a\u003c/code\u003e\u003c/a\u003e ci: fix release workflow (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1241\"\u003e#1241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/4b72d61a8e7a2e450e71ffe8806739f2e1122f54\"\u003e\u003ccode\u003e4b72d61\u003c/code\u003e\u003c/a\u003e chore: release v8.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/41c98ff07aa03ef0e9d65407b20c9465acbf0d83\"\u003e\u003ccode\u003e41c98ff\u003c/code\u003e\u003c/a\u003e fix: support \u003ccode\u003eNode16\u003c/code\u003e and \u003ccode\u003eNodeNext\u003c/code\u003e module resolution in \u003ccode\u003eexperimentalDts\u003c/code\u003e (...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/egoist/tsup/compare/v7.1.0...v8.3.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/common` from 10.4.4 to 10.4.16\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/nest/releases\"\u003e\u003ccode\u003e@​nestjs/common\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev10.4.16\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(common): introduce magic file type validator to nestjs common by \u003ca href=\"https://github.com/Chathula\"\u003e\u003ccode\u003e@​Chathula\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14948\"\u003enestjs/nest#14948\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v10.4.15...v10.4.16\"\u003ehttps://github.com/nestjs/nest/compare/v10.4.15...v10.4.16\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev10.4.15 (2024-12-09)\u003c/h2\u003e\n\u003ch4\u003eDependencies\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eplatform-express\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14282\"\u003e#14282\u003c/a\u003e fix(deps): update dependency express to v4.21.2 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev10.4.13 (2024-12-03)\u003c/h2\u003e\n\u003ch4\u003eBug fixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecommon\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14256\"\u003e#14256\u003c/a\u003e chore(common): Add type declaration for RawBody decorator with pipes (\u003ca href=\"https://github.com/sapenlei\"\u003e\u003ccode\u003e@​sapenlei\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDependencies\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14257\"\u003e#14257\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​fastify/static\u003c/code\u003e to v7.0.4 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14258\"\u003e#14258\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​nestjs/sequelize\u003c/code\u003e to v10.0.1 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14249\"\u003e#14249\u003c/a\u003e chore(deps): bump \u003ccode\u003e@​apollo/gateway\u003c/code\u003e from 2.4.8 to 2.8.5 in /sample/32-graphql-federation-schema-first/users-application (\u003ca href=\"https://github.com/apps/dependabot\"\u003e\u003ccode\u003e@​dependabot[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14250\"\u003e#14250\u003c/a\u003e chore(deps): update jest monorepo (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14245\"\u003e#14245\u003c/a\u003e chore(deps): update dependency mqtt to v5.10.3 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14247\"\u003e#14247\u003c/a\u003e fix(deps): update nest monorepo to v10.4.12 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14251\"\u003e#14251\u003c/a\u003e chore(deps-dev): bump graphql-tools from 9.0.3 to 9.0.5 (\u003ca href=\"https://github.com/apps/dependabot\"\u003e\u003ccode\u003e@​dependabot[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14246\"\u003e#14246\u003c/a\u003e chore(deps): update nest monorepo (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 3\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eKamil Mysliwiec (\u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMicael Levi L. Cavalcante (\u003ca href=\"https://github.com/micalevisk\"\u003e\u003ccode\u003e@​micalevisk\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esapenlei (\u003ca href=\"https://github.com/sapenlei\"\u003e\u003ccode\u003e@​sapenlei\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev10.4.12 (2024-11-29)\u003c/h2\u003e\n\u003ch4\u003eBug fixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecommon\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14241\"\u003e#14241\u003c/a\u003e fix(common): enforce string type in validationpipe (\u003ca href=\"https://github.com/LhonRafaat\"\u003e\u003ccode\u003e@​LhonRafaat\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDependencies\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eOther\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14243\"\u003e#14243\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/node\u003c/code\u003e to v20.17.9 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14240\"\u003e#14240\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/multer\u003c/code\u003e to v1.4.12 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14239\"\u003e#14239\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/chai\u003c/code\u003e to v4.3.20 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14237\"\u003e#14237\u003c/a\u003e chore(deps): update confluentinc/cp-zookeeper docker tag to v7.7.2 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14236\"\u003e#14236\u003c/a\u003e chore(deps): update confluentinc/cp-kafka docker tag to v7.7.2 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/12253\"\u003e#12253\u003c/a\u003e fix(deps): update apollo graphql packages (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14235\"\u003e#14235\u003c/a\u003e chore(deps-dev): bump \u003ccode\u003e@​commitlint/config-angular\u003c/code\u003e from 19.5.0 to 19.6.0 (\u003ca href=\"https://github.com/apps/dependabot\"\u003e\u003ccode\u003e@​dependabot[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14233\"\u003e#14233\u003c/a\u003e chore(deps): update nest monorepo (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6c8aec63b4828ecb96dd62c5c5edb838539c45e6\"\u003e\u003ccode\u003e6c8aec6\u003c/code\u003e\u003c/a\u003e chore(\u003ca href=\"https://github.com/nestjs\"\u003e\u003ccode\u003e@​nestjs\u003c/code\u003e\u003c/a\u003e) publish v10.4.16 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/2b9e132f6a3bb60f450076d0eacbef23be17a3c0\"\u003e\u003ccode\u003e2b9e132\u003c/code\u003e\u003c/a\u003e chore: update outdated tests, make file-type optional\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/cb0d6506b34f771c3946be1c6b980abaad31a348\"\u003e\u003ccode\u003ecb0d650\u003c/code\u003e\u003c/a\u003e chore: remove duplicate packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6196ab21502e762e4f497867a7f265047b4e0cd6\"\u003e\u003ccode\u003e6196ab2\u003c/code\u003e\u003c/a\u003e Merge branch 'Chathula-fix-nestjs-common-mime-validator'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/0ac7959927d0787a19039ed9eafe61d15ed10143\"\u003e\u003ccode\u003e0ac7959\u003c/code\u003e\u003c/a\u003e chore: minor tweaks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/312a54ae2e20bd294ef1ccd5b6ca8476714c8a5a\"\u003e\u003ccode\u003e312a54a\u003c/code\u003e\u003c/a\u003e Update packages/common/pipes/file/file-type.validator.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/a28fc033f49ce7ec0432478a52d2a9a518d896d4\"\u003e\u003ccode\u003ea28fc03\u003c/code\u003e\u003c/a\u003e refactor(common): move back file type validator options type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/07b4b3829ebefc897ad547a08d9e954e5d13f2ce\"\u003e\u003ccode\u003e07b4b38\u003c/code\u003e\u003c/a\u003e refactor(common): move file-type package to peer dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/0b7af8ab0777ba6fcebaa4c9c958b77b1fb95326\"\u003e\u003ccode\u003e0b7af8a\u003c/code\u003e\u003c/a\u003e refactor(common): refactor code to use simple eval\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6953b7a79e3e326eac01875806ee3f984fe702da\"\u003e\u003ccode\u003e6953b7a\u003c/code\u003e\u003c/a\u003e fix(common): used eval import\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nestjs/nest/commits/v10.4.16/packages/common\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@apollo/server` from 4.11.3 to 5.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apollographql/apollo-server/releases\"\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server-integration-testsuite\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.4.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.4.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/phryneas\"\u003e\u003ccode\u003e@​phryneas\u003c/code\u003e\u003c/a\u003e! - ⚠️ SECURITY \u003ccode\u003e@apollo/server/standalone\u003c/code\u003e:\u003c/p\u003e\n\u003cp\u003eThe default configuration of \u003ccode\u003estartStandaloneServer\u003c/code\u003e was vulnerable to denial of service (DoS) attacks through specially crafted request bodies with exotic character set encodings.\u003c/p\u003e\n\u003cp\u003eIn accordance with \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc7159#section-8.1\"\u003eRFC 7159\u003c/a\u003e, we now only accept request bodies encoded in UTF-8, UTF-16 (LE or BE), or UTF-32 (LE or BE).\nAny other character set will be rejected with a \u003ccode\u003e415 Unsupported Media Type\u003c/code\u003e error.\nNote that the more recent JSON RFC, \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc8259#section-8.1\"\u003eRFC 8259\u003c/a\u003e, is more strict and will only allow UTF-8.\nSince this is a minor release, we have chosen to remain compatible with the more permissive RFC 7159 for now.\nIn a future major release, we may tighten this restriction further to only allow UTF-8.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eIf you were not using \u003ccode\u003estartStandaloneServer\u003c/code\u003e, you were not affected by this vulnerability.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eGenerally, please note that we provide \u003ccode\u003estartStandaloneServer\u003c/code\u003e as a convenience tool for quickly getting started with Apollo Server.\nFor production deployments, we recommend using Apollo Server with a more fully-featured web server framework such as Express, Koa, or Fastify, where you have more control over security-related configuration options.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server-integration-testsuite\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.3.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.3.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8062\"\u003e#8062\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/cristunaranjo\"\u003e\u003ccode\u003e@​cristunaranjo\u003c/code\u003e\u003c/a\u003e! - Allow configuration of graphql execution options (maxCoercionErrors)\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n  resolvers,\n  executionOptions: {\n    maxCoercionErrors: 50,\n  },\n});\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8014\"\u003e#8014\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/mo4islona\"\u003e\u003ccode\u003e@​mo4islona\u003c/code\u003e\u003c/a\u003e! - Expose \u003ccode\u003egraphql\u003c/code\u003e validation options.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apollographql/apollo-server/blob/main/packages/server/CHANGELOG.md\"\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.4.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/phryneas\"\u003e\u003ccode\u003e@​phryneas\u003c/code\u003e\u003c/a\u003e! - ⚠️ SECURITY \u003ccode\u003e@apollo/server/standalone\u003c/code\u003e:\u003c/p\u003e\n\u003cp\u003eThe default configuration of \u003ccode\u003estartStandaloneServer\u003c/code\u003e was vulnerable to denial of service (DoS) attacks through specially crafted request bodies with exotic character set encodings.\u003c/p\u003e\n\u003cp\u003eIn accordance with \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc7159#section-8.1\"\u003eRFC 7159\u003c/a\u003e, we now only accept request bodies encoded in UTF-8, UTF-16 (LE or BE), or UTF-32 (LE or BE).\nAny other character set will be rejected with a \u003ccode\u003e415 Unsupported Media Type\u003c/code\u003e error.\nNote that the more recent JSON RFC, \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc8259#section-8.1\"\u003eRFC 8259\u003c/a\u003e, is more strict and will only allow UTF-8.\nSince this is a minor release, we have chosen to remain compatible with the more permissive RFC 7159 for now.\nIn a future major release, we may tighten this restriction further to only allow UTF-8.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eIf you were not using \u003ccode\u003estartStandaloneServer\u003c/code\u003e, you were not affected by this vulnerability.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eGenerally, please note that we provide \u003ccode\u003estartStandaloneServer\u003c/code\u003e as a convenience tool for quickly getting started with Apollo Server.\nFor production deployments, we recommend using Apollo Server with a more fully-featured web server framework such as Express, Koa, or Fastify, where you have more control over security-related configuration options.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8062\"\u003e#8062\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/cristunaranjo\"\u003e\u003ccode\u003e@​cristunaranjo\u003c/code\u003e\u003c/a\u003e! - Allow configuration of graphql execution options (maxCoercionErrors)\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n  resolvers,\n  executionOptions: {\n    maxCoercionErrors: 50,\n  },\n});\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8014\"\u003e#8014\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/mo4islona\"\u003e\u003ccode\u003e@​mo4islona\u003c/code\u003e\u003c/a\u003e! - Expose \u003ccode\u003egraphql\u003c/code\u003e validation options.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n  resolvers,\n  validationOptions: {\n    maxErrors: 10,\n  },\n});\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/ad45d1505d867de4c2761b7935855445ef7641e7\"\u003e\u003ccode\u003ead45d15\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8179\"\u003e#8179\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/443e54747d44c1d7c213d019936514dec024b450\"\u003e\u003ccode\u003e443e547\u003c/code\u003e\u003c/a\u003e fix repository urls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/28d6d47ff636751807141267c329acb736c177b6\"\u003e\u003ccode\u003e28d6d47\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8172\"\u003e#8172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e feat: Allow configuration of graphql validation options \u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8014\"\u003e#8014\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/f2c16a7caff895a8b97c5a800405795cb19ba624\"\u003e\u003ccode\u003ef2c16a7\u003c/code\u003e\u003c/a\u003e bump dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e feat: Allow configuration of graphql execution options(maxCoercionErrors)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/7be3686ae62fb04bb4d0bfddb465d5e89631d4e4\"\u003e\u003ccode\u003e7be3686\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8163\"\u003e#8163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/51acbebde7cc2759efacaa9eccb10aa3fee6b368\"\u003e\u003ccode\u003e51acbeb\u003c/code\u003e\u003c/a\u003e Require legacy incremental execute as an \u003ccode\u003eApolloServer\u003c/code\u003e option instead of a d...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/ae1be2985814212bc4df3556c930cb84f7773381\"\u003e\u003ccode\u003eae1be29\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8155\"\u003e#8155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/apollographql/apollo-server/commits/@apollo/server@5.4.0/packages/server\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​apollo/server\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nodemailer` from 7.0.5 to 7.0.11\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodemailer/nodemailer/releases\"\u003enodemailer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.11\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.10...v7.0.11\"\u003e7.0.11\u003c/a\u003e (2025-11-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eprevent stack overflow DoS in addressparser with deeply nested groups (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003eb61b9c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.9...v7.0.10\"\u003e7.0.10\u003c/a\u003e (2025-10-23)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncrease data URI size limit from 100KB to 50MB and preserve content type (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e28dbf3f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.8...v7.0.9\"\u003e7.0.9\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e Trying to fix release proecess by upgrading Node version in runner (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/579fce4683eb588891613a6c9a00d8092e8c62d1\"\u003e579fce4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.7...v7.0.8\"\u003e7.0.8\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e flatten nested groups per RFC 5322 (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/8f8a77c67f0ba94ddf4e16c68f604a5920fb5d26\"\u003e8f8a77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.7\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.6...v7.0.7\"\u003e7.0.7\u003c/a\u003e (2025-10-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e Fixed addressparser handling of quoted nested email addresses (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626\"\u003e1150d99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edns:\u003c/strong\u003e add memory leak prevention for DNS cache (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/0240d6795ded6d8008d102161a729f120b6d786a\"\u003e0240d67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elinter:\u003c/strong\u003e Updated eslint and created prettier formatting task (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/df13b7487e368acded35e45d0887d23c89c9177a\"\u003edf13b74\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefresh expired DNS cache on error (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1759\"\u003e#1759\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/ea0fc5a6633a3546f4b00fcf2f428e9ca732cdb6\"\u003eea0fc5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve linter errors in DNS cache tests (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3b8982c1f24508089a8757b74039000a4498b158\"\u003e3b8982c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6\"\u003e7.0.6\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md\"\u003enodemailer's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.10...v7.0.11\"\u003e7.0.11\u003c/a\u003e (2025-11-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eprevent stack overflow DoS in addressparser with deeply nested groups (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003eb61b9c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.9...v7.0.10\"\u003e7.0.10\u003c/a\u003e (2025-10-23)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncrease data URI size limit from 100KB to 50MB and preserve content type (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e28dbf3f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.8...v7.0.9\"\u003e7.0.9\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e Trying to fix release proecess by upgrading Node version in runner (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/579fce4683eb588891613a6c9a00d8092e8c62d1\"\u003e579fce4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.7...v7.0.8\"\u003e7.0.8\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e flatten nested groups per RFC 5322 (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/8f8a77c67f0ba94ddf4e16c68f604a5920fb5d26\"\u003e8f8a77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.6...v7.0.7\"\u003e7.0.7\u003c/a\u003e (2025-10-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e Fixed addressparser handling of quoted nested email addresses (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626\"\u003e1150d99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edns:\u003c/strong\u003e add memory leak prevention for DNS cache (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/0240d6795ded6d8008d102161a729f120b6d786a\"\u003e0240d67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elinter:\u003c/strong\u003e Updated eslint and created prettier formatting task (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/df13b7487e368acded35e45d0887d23c89c9177a\"\u003edf13b74\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefresh expired DNS cache on error (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1759\"\u003e#1759\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/ea0fc5a6633a3546f4b00fcf2f428e9ca732cdb6\"\u003eea0fc5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve linter errors in DNS cache tests (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3b8982c1f24508089a8757b74039000a4498b158\"\u003e3b8982c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6\"\u003e7.0.6\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eencoder:\u003c/strong\u003e avoid silent data loss by properly flushing trailing base64 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1747\"\u003e#1747\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/01ae76f2cfe991c0c3fe80170f236da60531496b\"\u003e01ae76f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehandle multiple XOAUTH2 token requests correctly (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1754\"\u003e#1754\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/dbe00286351cddf012726a41a96ae613d30a34ee\"\u003edbe0028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReDoS vulnerability in parseDataURI and _processDataUrl (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1755\"\u003e#1755\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/90b3e24d23929ebf9f4e16261049b40ee4055a39\"\u003e90b3e24\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3d17dbec49ab3e3f0e13e62871e5534be5b99994\"\u003e\u003ccode\u003e3d17dbe\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.11 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1783\"\u003e#1783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/15879f8bd5a94fe608fd7cf1d3142de14527eadf\"\u003e\u003ccode\u003e15879f8\u003c/code\u003e\u003c/a\u003e Bumped dev dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003e\u003ccode\u003eb61b9c0\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow DoS in addressparser with deeply nested groups\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/4175e4baf92ffc4e20791a11fc0886025228a2ac\"\u003e\u003ccode\u003e4175e4b\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.10 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1776\"\u003e#1776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/d882ccfe8d37723e7017c1966608dcf8217d8a82\"\u003e\u003ccode\u003ed882ccf\u003c/code\u003e\u003c/a\u003e Merge branch 'master' of github.com:nodemailer/nodemailer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1d7e4f786bccdc3e0a1bf0140d07ce5aaf29d82a\"\u003e\u003ccode\u003e1d7e4f7\u003c/code\u003e\u003c/a\u003e Bumped deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/10bd871656b331a674feabbcfc1d6363918cb244\"\u003e\u003ccode\u003e10bd871\u003c/code\u003e\u003c/a\u003e chore: correct typo in variable name (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1773\"\u003e#1773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e\u003ccode\u003e28dbf3f\u003c/code\u003e\u003c/a\u003e fix: Increase data URI size limit from 100KB to 50MB and preserve content type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/92ae1c49e3a33767996db9ddfd04784a7b9595d7\"\u003e\u003ccode\u003e92ae1c4\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.9 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1769\"\u003e#1769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/c675d9e7e57d0d90bde7d71afb0b2739fc071233\"\u003e\u003ccode\u003ec675d9e\u003c/code\u003e\u003c/a\u003e Merge branch 'master' of github.com:nodemailer/nodemailer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for nodemailer since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `mjml` from 4.15.3 to 4.18.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/mjmlio/mjml/releases\"\u003emjml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eContent updates by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3021\"\u003emjmlio/mjml#3021\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mjmlio/mjml/compare/v4.17.2...v4.18.0\"\u003ehttps://github.com/mjmlio/mjml/compare/v4.17.2...v4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emj-section: do not inherit attributes from context \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3019\"\u003e#3019\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3020\"\u003emjmlio/mjml#3020\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mjmlio/mjml/compare/v4.17.1...v4.17.2\"\u003ehttps://github.com/mjmlio/mjml/compare/v4.17.1...v4.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emjml-wrapper: allowed attributes not inheriting \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3011\"\u003e#3011\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3012\"\u003emjmlio/mjml#3012\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mjmlio/mjml/compare/v4.17.0...v4.17.1\"\u003ehttps://github.com/mjmlio/mjml/compare/v4.17.0...v4.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emjml-wrapper: add gap between sections \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2977\"\u003e#2977\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3004\"\u003emjmlio/mjml#3004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emjml-social: respect align and icon-height attributes \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3001\"\u003e#3001\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3002\"\u003emjmlio/mjml#3002\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-carousel: hide thumbnails if not supported  \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2999\"\u003e#2999\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3000\"\u003emjmlio/mjml#3000\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-accordion: respect font-family and padding-x attributes  \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2997\"\u003e#2997\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2998\"\u003emjmlio/mjml#2998\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-table: respect cellspacing \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2995\"\u003e#2995\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2996\"\u003emjmlio/mjml#2996\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-navbar: fix ico-padding-x that was not working \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2991\"\u003e#2991\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2992\"\u003emjmlio/mjml#2992\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-column: fix border-radius that was not working \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2989\"\u003e#2989\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2990\"\u003emjmlio/mjml#2990\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded link to support matrix by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3005\"\u003emjmlio/mjml#3005\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate image URLs by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3007\"\u003emjmlio/mjml#3007\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExamples indenting by \u003ca href=\"https://github.com/EtienneHosman\"\u003e\u003ccode\u003e@​EtienneHosman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2974\"\u003emjmlio/mjml#2974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/7f4872c48af877d98448335fb9002585cfc8fcbf\"\u003e\u003ccode\u003e7f4872c\u003c/code\u003e\u003c/a\u003e v4.18.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/95b9ebdd28ce497f37d8c20160fbbd36df2d7d3e\"\u003e\u003ccode\u003e95b9ebd\u003c/code\u003e\u003c/a\u003e v4.17.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/3f3b0bcc5f297d9bc84999908c213bc42d9792eb\"\u003e\u003ccode\u003e3f3b0bc\u003c/code\u003e\u003c/a\u003e v4.17.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/375c593ce24485867db35a26218e9d89d4f386cc\"\u003e\u003ccode\u003e375c593\u003c/code\u003e\u003c/a\u003e v4.17.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/81f37eafac77ea80aeabb5ea4d7ffc4eb01263c3\"\u003e\u003ccode\u003e81f37ea\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2990\"\u003e#2990\u003c/a\u003e from mjmlio/bugfix/MJML-36-mj-column_border_radius\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/025e3fc31bb23422c8cde70332e1549249f380a1\"\u003e\u003ccode\u003e025e3fc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2992\"\u003e#2992\u003c/a\u003e from mjmlio/bugfix/MJML-37-mj-navbar_ico-padding-x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/424cac84c5286bf334982ed29a9e04ec3ec030a8\"\u003e\u003ccode\u003e424cac8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2996\"\u003e#2996\u003c/a\u003e from mjmlio/bugfix/MJML-39-mj-table-cellspacing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/4d975b09482a3aed157f92096a4ef29f9d0dfe3d\"\u003e\u003ccode\u003e4d975b0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2998\"\u003e#2998\u003c/a\u003e from mjmlio/bugfix/MJML-43-mj-accordion_font-family_...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/4d41b9d81eb08f930d93ed22d570192b9236d8e1\"\u003e\u003ccode\u003e4d41b9d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3000\"\u003e#3000\u003c/a\u003e from mjmlio/feature/MJML-49-mj-carousel_thumbnails_f...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/9bac7c6cb11cf88c0e9518a0b9e30262ea7414b1\"\u003e\u003ccode\u003e9bac7c6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3002\"\u003e#3002\u003c/a\u003e from mjmlio/bugfix/MJML-41-mj-social_align_icon-height\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/mjmlio/mjml/commits/v4.18.0/packages/mjml\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~totocap\"\u003etotocap\u003c/a\u003e, a new releaser for mjml since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/traverse` from 7.21.3 to 7.29.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/traverse\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.0 (2026-01-31)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e for your first PR!\u003c/p\u003e\n\u003ch4\u003e:rocket: New Feature\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17750\"\u003e#17750\u003c/a\u003e [7.x backport] Add attributes import declaration builder (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17663\"\u003e#17663\u003c/a\u003e [7.x backport] feat(standalone): export async transform (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17725\"\u003e#17725\u003c/a\u003e [7.x backport] feat: read standalone targets from data-targets (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17765\"\u003e#17765\u003c/a\u003e fix(parser): correctly parse type assertions in \u003ccode\u003eextends\u003c/code\u003e clause (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17723\"\u003e#17723\u003c/a\u003e [7.x backport] fix(parser): improve super type argument parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17708\"\u003e#17708\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentPath is given (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-block-scoping\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17737\"\u003e#17737\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates shadowing variable (\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17642\"\u003e#17642\u003c/a\u003e [Babel 7] Improve generator performance (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 6\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDavid (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aa8394e454337d118ac3d40bfa3ee1a3cb3f3ed2\"\u003e\u003ccode\u003eaa8394e\u003c/code\u003e\u003c/a\u003e v7.29.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/84366a8ea453814e732784db74cf2e2b6635eb6f\"\u003e\u003ccode\u003e84366a8\u003c/code\u003e\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentP...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/229eb452c5d5d2be0dc138ec2956aff7ff1057d7\"\u003e\u003ccode\u003e229eb45\u003c/code\u003e\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/905bc22b2fff23673eabe467815c67b29bf8bba2\"\u003e\u003ccode\u003e905bc22\u003c/code\u003e\u003c/a\u003e fix: lint errors in main branch (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17612\"\u003e#17612\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a03e2b63ae530674e866b60350b7eb4a5fcb5f59\"\u003e\u003ccode\u003ea03e2b6\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003epath.evaluate\u003c/code\u003e correctly returns \u003ccode\u003econfident\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17584\"\u003e#17584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aac2c37e11ad58905f7f9606103074e80bacbbcd\"\u003e\u003ccode\u003eaac2c37\u003c/code\u003e\u003c/a\u003e chore: Use Gulpfile.mts (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17579\"\u003e#17579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/65c4a6b3ee0e1d32801529e841572bb22534e1f3\"\u003e\u003ccode\u003e65c4a6b\u003c/code\u003e\u003c/a\u003e [Babel 8] fix: Improve \u003ccode\u003etraverse\u003c/code\u003e types (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17574\"\u003e#17574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c92c4919771105140015167f25f7bacac77c90d9\"\u003e\u003ccode\u003ec92c491\u003c/code\u003e\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17589\"\u003e#17589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.0/packages/babel-traverse\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/traverse\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.3.4 to 1.13.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.6\u003c/h2\u003e\n\u003cp\u003eThis release focuses on platform compatibility, error handling improvements, and code quality maintenance.\u003c/p\u003e\n\u003ch2\u003e⚠️ Important Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBreaking Changes:\u003c/strong\u003e None identified in this release.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAction Required:\u003c/strong\u003e Users targeting React Native should verify their integration, particularly if relying on specific Blob or FormData behaviours, as improvements have been made to support these objects.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🚀 New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eReact Native Blob Support:\u003c/strong\u003e Axios now includes support for React Native Blob objects. Thanks to \u003ca href=\"https://github.com/moh3n9595\"\u003e\u003ccode\u003e@​moh3n9595\u003c/code\u003e\u003c/a\u003e for the initial implementation. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/5764\"\u003e#5764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCode Quality:\u003c/strong\u003e Implemented prettier across the codebase and resolved associated formatting issues. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7385\"\u003e#7385\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eEnvironment Compatibility:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFixed module exports for React Native and Browserify environments. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7386\"\u003e#7386\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded safe FormData detection for the WeChat Mini Program environment. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7324\"\u003e#7324\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eError Handling:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAxiosError.message is now correctly enumerable. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7392\"\u003e#7392\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAxiosError.from now correctly copies the status property from the source error, ensuring better error propagation. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7403\"\u003e#7403\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔧 Maintenance \u0026amp; Chores\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eDependencies:\u003c/strong\u003e Updated the development_dependencies group (5 updates). (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7432\"\u003e#7432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eInfrastructure:\u003c/strong\u003e Migrated \u003ccode\u003e@​rollup/plugin-babel\u003c/code\u003e from v5.3.1 to v6.1.0. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7424\"\u003e#7424\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDocumentation:\u003c/strong\u003e Added missing JSDoc comments to utilities. (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7427\"\u003e#7427\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🌟 New Contributors\u003c/h2\u003e\n\u003cp\u003eWe are thrilled to welcome our new contributors! Thank you for helping improve the project:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Gudahtt\"\u003e\u003ccode\u003e@​Gudahtt\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7386\"\u003e#7386\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ybbus\"\u003e\u003ccode\u003e@​ybbus\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7392\"\u003e#7392\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Shiwaangee\"\u003e\u003ccode\u003e@​Shiwaangee\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7324\"\u003e#7324\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/skrtheboss\"\u003e\u003ccode\u003e@​skrtheboss\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7403\"\u003e#7403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Janaka66\"\u003e\u003ccode\u003e@​Janaka66\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7427\"\u003e#7427\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moh3n9595\"\u003e\u003ccode\u003e@​moh3n9595\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/5764\"\u003e#5764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digital-wizard48\"\u003e\u003ccode\u003e@​digital-wizard48\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/pull/7424\"\u003e#7424\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cem\u003eFull Changelog: \u003ca href=\"https://github.com/axios/axios/compare/v1.13.5...v1.13.6\"\u003ev1.13.5...v1.13.6\u003c/a\u003e\u003c/em\u003e\u003c/p\u003e\n\u003ch2\u003ev1.13.5\u003c/h2\u003e\n\u003ch2\u003eRelease 1.13.5\u003c/h2\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fixed a potential \u003cstrong\u003eDenial of Service\u003c/strong\u003e issue involving the \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBug fix:\u003c/strong\u003e Resolved an issue where \u003ccode\u003eAxiosError\u003c/code\u003e could be missing the \u003ccode\u003estatus\u003c/code\u003e field on and after \u003cstrong\u003ev1.13.3\u003c/strong\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch4\u003eSecurity\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix Denial of Service via \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/stron...\n\n_Description has been truncated_","html_url":"https://github.com/SeedCompany/libs/pull/87","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/SeedCompany%2Flibs/issues/87","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/87/packages"}},{"old_version":"3.5.1","new_version":"3.5.4","update_type":"patch","path":null,"pr_created_at":"2026-03-25T20:14:15.000Z","version_change":"3.5.1 → 3.5.4","issue":{"uuid":"4138230083","node_id":"PR_kwDOOQGnU87NebH4","number":41,"state":"closed","title":"build(deps): Bump the npm_and_yarn group across 6 directories with 19 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-26T03:04:38.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-25T20:14:15.000Z","updated_at":"2026-03-26T03:04:40.000Z","time_to_close":24623,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","group_name":"npm_and_yarn","update_count":19,"packages":[{"name":"aws-sdk","old_version":"2.1692.0","new_version":"2.1693.0","repository_url":"https://github.com/aws/aws-sdk-js"},{"name":"basic-ftp","old_version":"5.0.5","new_version":"5.2.0","repository_url":"https://github.com/patrickjuchli/basic-ftp"},{"name":"mongoose","old_version":"8.8.4","new_version":"8.9.5","repository_url":"https://github.com/Automattic/mongoose"},{"name":"multer","old_version":"1.4.5-lts.1","new_version":"2.1.1","repository_url":"https://github.com/expressjs/multer"},{"name":"mysql2","old_version":"2.3.3","new_version":"3.9.8","repository_url":"https://github.com/sidorares/node-mysql2"},{"name":"underscore","old_version":"1.13.7","new_version":"1.13.8","repository_url":"https://github.com/jashkenas/underscore"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"brace-expansion","old_version":"2.0.1","new_version":"2.0.2","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"glob","old_version":"10.4.5","new_version":"10.5.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"glob","old_version":"11.0.0","new_version":"11.1.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/isaacs/minimatch"},{"name":"minimatch","old_version":"5.1.6","new_version":"5.1.9","repository_url":"https://github.com/isaacs/minimatch"},{"name":"minimatch","old_version":"9.0.5","new_version":"9.0.9","repository_url":"https://github.com/isaacs/minimatch"},{"name":"fast-xml-parser","old_version":"4.5.0","new_version":"5.5.9","repository_url":"https://github.com/NaturalIntelligence/fast-xml-parser"},{"name":"formidable","old_version":"3.5.1","new_version":"3.5.4","repository_url":"https://github.com/node-formidable/formidable"},{"name":"json-bigint","old_version":"0.3.1","new_version":"1.0.0","repository_url":"https://github.com/sidorares/json-bigint"},{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"jws","old_version":"3.2.2","new_version":"3.2.3","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"on-headers","old_version":"1.0.2","new_version":"1.1.0","repository_url":"https://github.com/jshttp/on-headers"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 15 updates in the /Backend/admin directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk](https://github.com/aws/aws-sdk-js) | `2.1692.0` | `2.1693.0` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.0.5` | `5.2.0` |\n| [mongoose](https://github.com/Automattic/mongoose) | `8.8.4` | `8.9.5` |\n| [multer](https://github.com/expressjs/multer) | `1.4.5-lts.1` | `2.1.1` |\n| [mysql2](https://github.com/sidorares/node-mysql2) | `2.3.3` | `3.9.8` |\n| [underscore](https://github.com/jashkenas/underscore) | `1.13.7` | `1.13.8` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [glob](https://github.com/isaacs/node-glob) | `10.4.5` | `10.5.0` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.0` | `11.1.0` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `5.1.6` | `5.1.9` |\n| [minimatch](https://github.com/isaacs/minimatch) | `9.0.5` | `9.0.9` |\n| [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) | `4.5.0` | `5.5.9` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.1` | `3.5.4` |\n| [json-bigint](https://github.com/sidorares/json-bigint) | `0.3.1` | `1.0.0` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [on-headers](https://github.com/jshttp/on-headers) | `1.0.2` | `1.1.0` |\n\nBumps the npm_and_yarn group with 7 updates in the /Backend/cronjobs directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk](https://github.com/aws/aws-sdk-js) | `2.1692.0` | `2.1693.0` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.0.5` | `5.2.0` |\n| [mongoose](https://github.com/Automattic/mongoose) | `8.8.4` | `8.9.5` |\n| [underscore](https://github.com/jashkenas/underscore) | `1.13.7` | `1.13.8` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `5.1.6` | `5.1.9` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n\nBumps the npm_and_yarn group with 13 updates in the /Backend/desktop directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk](https://github.com/aws/aws-sdk-js) | `2.1692.0` | `2.1693.0` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.0.5` | `5.2.0` |\n| [mongoose](https://github.com/Automattic/mongoose) | `8.8.4` | `8.9.5` |\n| [multer](https://github.com/expressjs/multer) | `1.4.5-lts.1` | `2.1.1` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.14.2` |\n| [underscore](https://github.com/jashkenas/underscore) | `1.13.7` | `1.13.8` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [glob](https://github.com/isaacs/node-glob) | `10.4.5` | `10.5.0` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `9.0.5` | `9.0.9` |\n| [minimatch](https://github.com/isaacs/minimatch) | `5.1.6` | `5.1.9` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.1` | `3.5.4` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [on-headers](https://github.com/jshttp/on-headers) | `1.0.2` | `1.1.0` |\n\nBumps the npm_and_yarn group with 2 updates in the /Backend/migrations directory: [mongoose](https://github.com/Automattic/mongoose) and [underscore](https://github.com/jashkenas/underscore).\nBumps the npm_and_yarn group with 2 updates in the /Backend/productivity_report directory: [mongoose](https://github.com/Automattic/mongoose) and [redis](https://github.com/redis/node-redis).\nBumps the npm_and_yarn group with 3 updates in the /Backend/store-logs-api directory: [file-type](https://github.com/sindresorhus/file-type), [formidable](https://github.com/node-formidable/formidable) and [ini](https://github.com/npm/ini).\n\nUpdates `aws-sdk` from 2.1692.0 to 2.1693.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js/releases\"\u003eaws-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.1693.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/9d3c66eca8c4416a9d347d0703f27b65775d65ef\"\u003e\u003ccode\u003e9d3c66e\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1693.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c039567cee58b50a44f53f30318fa21f36c42ecc\"\u003e\u003ccode\u003ec039567\u003c/code\u003e\u003c/a\u003e test(client-elastictranscoder): remove feature test (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4711\"\u003e#4711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/f5b1a6f0aebb477204d979091d654649f29ad9ce\"\u003e\u003ccode\u003ef5b1a6f\u003c/code\u003e\u003c/a\u003e docs: end-of-support (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4706\"\u003e#4706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/657d6feb00447c8be1d65158a0ecc0585b70ed60\"\u003e\u003ccode\u003e657d6fe\u003c/code\u003e\u003c/a\u003e chore: use ssh private key for git sync (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4705\"\u003e#4705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c12585baeb9197158cd50975af66856617732aea\"\u003e\u003ccode\u003ec12585b\u003c/code\u003e\u003c/a\u003e chore: remove regression label management (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4699\"\u003e#4699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aws/aws-sdk-js/compare/v2.1692.0...v2.1693.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `basic-ftp` from 5.0.5 to 5.2.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/releases\"\u003ebasic-ftp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eChanged: Skip files with invalid name in downloadToDir.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded: Add the option to prevent the use of separate transfer host IPs when using PASV. (\u003ca href=\"https://redirect.github.com/patrickjuchli/basic-ftp/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/blob/master/CHANGELOG.md\"\u003ebasic-ftp's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eChanged: Skip files with invalid name in downloadToDir. Fixes security vulnerability CVE-2026-27699, see \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-5rq4-664w-9x2c\"\u003ehttps://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-5rq4-664w-9x2c\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded: Add the option to prevent the use of separate transfer host IPs when using PASV. (\u003ca href=\"https://redirect.github.com/patrickjuchli/basic-ftp/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/5d41e45073ed1a8a3b5e5a1bbfcd131e61295bf8\"\u003e\u003ccode\u003e5d41e45\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/49c2e73ed1cae4962ae38b33ab93a3548c2f5622\"\u003e\u003ccode\u003e49c2e73\u003c/code\u003e\u003c/a\u003e Update dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/2a2a0e6514357b9eda07c2f8afbd3f04727a7cd9\"\u003e\u003ccode\u003e2a2a0e6\u003c/code\u003e\u003c/a\u003e Skip invalid filenames\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/65c90d949c0f8a9709759dff9e76bbe07061812b\"\u003e\u003ccode\u003e65c90d9\u003c/code\u003e\u003c/a\u003e Fix permissions for workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/593cb7831bec60d5590acc3eeb2e553f4a431167\"\u003e\u003ccode\u003e593cb78\u003c/code\u003e\u003c/a\u003e Set permissions for workflow jobs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/36adf110beabc9acdcad122149a2ea795a2b1a6c\"\u003e\u003ccode\u003e36adf11\u003c/code\u003e\u003c/a\u003e Remove deprecated CodeQL check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/9da4af0e1f82fe372bedc1b7820f55c6eaf012e5\"\u003e\u003ccode\u003e9da4af0\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/699303975bea182b966f9f34a1ecbbebe92afcef\"\u003e\u003ccode\u003e6993039\u003c/code\u003e\u003c/a\u003e Improve naming\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/0b8f7560e11af817d70ff17f986b334ba2e99b81\"\u003e\u003ccode\u003e0b8f756\u003c/code\u003e\u003c/a\u003e Improve naming\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrickjuchli/basic-ftp/commit/67a53f21623e4047d28d7a6f98f539f1adc9d1d0\"\u003e\u003ccode\u003e67a53f2\u003c/code\u003e\u003c/a\u003e Bump version\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/patrickjuchli/basic-ftp/compare/v5.0.5...v5.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~patrickjuchli\"\u003epatrickjuchli\u003c/a\u003e, a new releaser for basic-ftp since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `mongoose` from 8.8.4 to 8.9.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Automattic/mongoose/releases\"\u003emongoose's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e8.9.5 / 2025-01-13\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: disallow nested $where in populate match\u003c/li\u003e\n\u003cli\u003efix(schema): handle bitwise operators on Int32 \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15176\"\u003e#15176\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15170\"\u003e#15170\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.4 / 2025-01-09\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(document): fix document not applying manual populate when using a function in schema.options.ref \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15138\"\u003e#15138\u003c/a\u003e \u003ca href=\"https://github.com/IchirokuXVI\"\u003eIchirokuXVI\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): make Model.validate() static correctly cast document arrays \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15169\"\u003e#15169\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15164\"\u003e#15164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): allow passing validateBeforeSave option to bulkSave() to skip validation \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15161\"\u003e#15161\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15156\"\u003e#15156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(schema): allow multiple self-referencing discriminator schemas using Schema.prototype.discriminator \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15142\"\u003e#15142\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15120\"\u003e#15120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: avoid BufferToBinary\u0026lt;\u0026gt; wiping lean types when passed to generic functions \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15160\"\u003e#15160\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15158\"\u003e#15158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix \u0026lt;code\u0026gt; in header ids \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15159\"\u003e#15159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix header in field-level-encryption.md \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15137\"\u003e#15137\u003c/a\u003e \u003ca href=\"https://github.com/damieng\"\u003edamieng\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.3 / 2024-12-30\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(schema): make duplicate index error a warning for now to prevent blocking upgrading \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15135\"\u003e#15135\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15112\"\u003e#15112\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15109\"\u003e#15109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): handle document array paths set to non-array values in Model.castObject() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15124\"\u003e#15124\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15075\"\u003e#15075\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(document): avoid using childSchemas.path for compatibility with pre-Mongoose-8.8 schemas \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15131\"\u003e#15131\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15071\"\u003e#15071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): avoid throwing unnecessary error if updateOne() returns null in save() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15126\"\u003e#15126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf(cursor): clear the stack every time if using populate with batchSize to avoid stack overflows with large docs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15136\"\u003e#15136\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/10449\"\u003e#10449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: make BufferToBinary avoid Document instances \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15123\"\u003e#15123\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15122\"\u003e#15122\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(model+query): avoid stripping out virtuals when calling populate with paths generic \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15132\"\u003e#15132\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15111\"\u003e#15111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(schema): add missing removeIndex \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15134\"\u003e#15134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add cleanIndexes() to IndexManager interface \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15127\"\u003e#15127\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: move search endpoint to netlify \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15119\"\u003e#15119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.2 / 2024-12-19\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(schema): avoid throwing duplicate index error if index spec keys have different order or index has a custom name \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15112\"\u003e#15112\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15109\"\u003e#15109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(map): clean modified subpaths when overwriting values in map of subdocs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15114\"\u003e#15114\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15108\"\u003e#15108\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(aggregate): pull session from transaction local storage for aggregation cursors \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15094\"\u003e#15094\u003c/a\u003e \u003ca href=\"https://github.com/IchirokuXVI\"\u003eIchirokuXVI\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: correctly handle union types in BufferToBinary and related helpers \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15103\"\u003e#15103\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15102\"\u003e#15102\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15057\"\u003e#15057\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add UUID to RefType \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15115\"\u003e#15115\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15101\"\u003e#15101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: remove link to Mongoose 5.x docs from dropdown \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15116\"\u003e#15116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(connection+document+model): remove remaining references to remove(), clarify that deleteOne() does not execute until then() or exec() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15113\"\u003e#15113\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15107\"\u003e#15107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.1 / 2024-12-16\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(connection): remove heartbeat check in load balanced mode \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15089\"\u003e#15089\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15042\"\u003e#15042\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/14812\"\u003e#14812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(discriminator): gather childSchemas when creating discriminator to ensure $getAllSubdocs() can properly get all subdocs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15099\"\u003e#15099\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15088\"\u003e#15088\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15092\"\u003e#15092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): handle discriminators in castObject() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15096\"\u003e#15096\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15075\"\u003e#15075\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(schema): throw error if duplicate index definition using unique in schema path and subsequent .index() call \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15093\"\u003e#15093\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15056\"\u003e#15056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: mark documents that are populated using hydratedPopulatedDocs option as populated in top-level doc \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15080\"\u003e#15080\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15048\"\u003e#15048\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(document+schema): improve error message for get() on invalid path \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15098\"\u003e#15098\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15071\"\u003e#15071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: remove more callback doc references \u0026amp; some small other changes \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15095\"\u003e#15095\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.0 / 2024-12-13\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md\"\u003emongoose's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e8.9.5 / 2025-01-13\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: disallow nested $where in populate match CVE-2025-23061\u003c/li\u003e\n\u003cli\u003efix(schema): handle bitwise operators on Int32 \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15176\"\u003e#15176\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15170\"\u003e#15170\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e7.8.4 / 2025-01-13\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: disallow nested $where in populate match CVE-2025-23061\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e6.13.6 / 2025-01-13\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: disallow nested $where in populate match CVE-2025-23061\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.4 / 2025-01-09\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(document): fix document not applying manual populate when using a function in schema.options.ref \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15138\"\u003e#15138\u003c/a\u003e \u003ca href=\"https://github.com/IchirokuXVI\"\u003eIchirokuXVI\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): make Model.validate() static correctly cast document arrays \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15169\"\u003e#15169\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15164\"\u003e#15164\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): allow passing validateBeforeSave option to bulkSave() to skip validation \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15161\"\u003e#15161\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15156\"\u003e#15156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(schema): allow multiple self-referencing discriminator schemas using Schema.prototype.discriminator \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15142\"\u003e#15142\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15120\"\u003e#15120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: avoid BufferToBinary\u0026lt;\u0026gt; wiping lean types when passed to generic functions \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15160\"\u003e#15160\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15158\"\u003e#15158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix \u003ccode\u003e\u0026lt;code\u0026gt;\u003c/code\u003e in header ids \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15159\"\u003e#15159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix header in field-level-encryption.md \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15137\"\u003e#15137\u003c/a\u003e \u003ca href=\"https://github.com/damieng\"\u003edamieng\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.3 / 2024-12-30\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(schema): make duplicate index error a warning for now to prevent blocking upgrading \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15135\"\u003e#15135\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15112\"\u003e#15112\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15109\"\u003e#15109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): handle document array paths set to non-array values in Model.castObject() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15124\"\u003e#15124\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15075\"\u003e#15075\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(document): avoid using childSchemas.path for compatibility with pre-Mongoose-8.8 schemas \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15131\"\u003e#15131\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15071\"\u003e#15071\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): avoid throwing unnecessary error if updateOne() returns null in save() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15126\"\u003e#15126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf(cursor): clear the stack every time if using populate with batchSize to avoid stack overflows with large docs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15136\"\u003e#15136\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/10449\"\u003e#10449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: make BufferToBinary avoid Document instances \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15123\"\u003e#15123\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15122\"\u003e#15122\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(model+query): avoid stripping out virtuals when calling populate with paths generic \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15132\"\u003e#15132\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15111\"\u003e#15111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(schema): add missing removeIndex \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15134\"\u003e#15134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add cleanIndexes() to IndexManager interface \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15127\"\u003e#15127\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: move search endpoint to netlify \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15119\"\u003e#15119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.2 / 2024-12-19\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(schema): avoid throwing duplicate index error if index spec keys have different order or index has a custom name \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15112\"\u003e#15112\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15109\"\u003e#15109\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(map): clean modified subpaths when overwriting values in map of subdocs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15114\"\u003e#15114\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15108\"\u003e#15108\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(aggregate): pull session from transaction local storage for aggregation cursors \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15094\"\u003e#15094\u003c/a\u003e \u003ca href=\"https://github.com/IchirokuXVI\"\u003eIchirokuXVI\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: correctly handle union types in BufferToBinary and related helpers \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15103\"\u003e#15103\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15102\"\u003e#15102\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15057\"\u003e#15057\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add UUID to RefType \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15115\"\u003e#15115\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15101\"\u003e#15101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: remove link to Mongoose 5.x docs from dropdown \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15116\"\u003e#15116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(connection+document+model): remove remaining references to remove(), clarify that deleteOne() does not execute until then() or exec() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15113\"\u003e#15113\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15107\"\u003e#15107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.9.1 / 2024-12-16\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(connection): remove heartbeat check in load balanced mode \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15089\"\u003e#15089\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15042\"\u003e#15042\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/14812\"\u003e#14812\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(discriminator): gather childSchemas when creating discriminator to ensure $getAllSubdocs() can properly get all subdocs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15099\"\u003e#15099\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15088\"\u003e#15088\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15092\"\u003e#15092\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/5af0a109fcf206eb765c02e0fffe54a78ab95174\"\u003e\u003ccode\u003e5af0a10\u003c/code\u003e\u003c/a\u003e chore: release 8.9.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/a42d8f5e3b8a6c2abd7d32c15b0cc5edac928d4e\"\u003e\u003ccode\u003ea42d8f5\u003c/code\u003e\u003c/a\u003e Merge branch '7.x'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/73e81abe3ec012f8255d3ca9978594075378faf4\"\u003e\u003ccode\u003e73e81ab\u003c/code\u003e\u003c/a\u003e chore: release 7.8.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/4fe9a904e3c2184ce6d01d9c3c8f3b239616f155\"\u003e\u003ccode\u003e4fe9a90\u003c/code\u003e\u003c/a\u003e Merge branch '6.x' into 7.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/e59e342e5d01bfeee31c5d5c796745315ecf0fa9\"\u003e\u003ccode\u003ee59e342\u003c/code\u003e\u003c/a\u003e chore: release 6.13.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/64a9f9706f2428c49e0cfb8e223065acc645f7bc\"\u003e\u003ccode\u003e64a9f97\u003c/code\u003e\u003c/a\u003e fix: disallow nested $where in populate match\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/fa33717db8c6ee2331c68241abff7a81b84a70fb\"\u003e\u003ccode\u003efa33717\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15176\"\u003e#15176\u003c/a\u003e from Automattic/vkarpov15/\u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15170\"\u003egh-15170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/072860237a2b8d968e06d4090a24127de8cdff24\"\u003e\u003ccode\u003e0728602\u003c/code\u003e\u003c/a\u003e test: make test cast non-boolean value\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/0cad0d71a8667295c6abd4636ea7d7b5cdc164e8\"\u003e\u003ccode\u003e0cad0d7\u003c/code\u003e\u003c/a\u003e fix(schema): handle bitwise operators on Int32\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/39886fbb57aaf345d01c0294cf2c3d2781898c29\"\u003e\u003ccode\u003e39886fb\u003c/code\u003e\u003c/a\u003e docs: quick changelog formatting fix\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Automattic/mongoose/compare/8.8.4...8.9.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `multer` from 1.4.5-lts.1 to 2.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/multer/releases\"\u003emulter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.1\u003c/h2\u003e\n\u003ch2\u003eImportant\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-3520\"\u003eCVE-2026-3520\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-5528-5vmv-3xc2\"\u003eGHSA-5528-5vmv-3xc2\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: add node version to 25.x in CI by \u003ca href=\"https://github.com/imangas\"\u003e\u003ccode\u003e@​imangas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1372\"\u003eexpressjs/multer#1372\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1378\"\u003eexpressjs/multer#1378\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1377\"\u003eexpressjs/multer#1377\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github/codeql-action from 3.24.7 to 4.32.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1376\"\u003eexpressjs/multer#1376\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/upload-artifact from 4.5.0 to 7.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1375\"\u003eexpressjs/multer#1375\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 4.1.1 to 6.0.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1374\"\u003eexpressjs/multer#1374\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix error/abort handling by \u003ca href=\"https://github.com/ctcpip\"\u003e\u003ccode\u003e@​ctcpip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1373\"\u003eexpressjs/multer#1373\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e2.1.1 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1380\"\u003eexpressjs/multer#1380\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/imangas\"\u003e\u003ccode\u003e@​imangas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1372\"\u003eexpressjs/multer#1372\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1378\"\u003eexpressjs/multer#1378\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/multer/compare/v2.1.0...v2.1.1\"\u003ehttps://github.com/expressjs/multer/compare/v2.1.0...v2.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.1.0\u003c/h2\u003e\n\u003ch2\u003eImportant\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-2359\"\u003eCVE-2026-2359\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-v52c-386h-88mc\"\u003eGHSA-v52c-386h-88mc\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-3304\"\u003eCVE-2026-3304\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-xf7r-hgr6-v32p\"\u003eGHSA-xf7r-hgr6-v32p\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: add funding to package.json by \u003ca href=\"https://github.com/bjohansebas\"\u003e\u003ccode\u003e@​bjohansebas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1346\"\u003eexpressjs/multer#1346\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: drop mkdirp dependency by \u003ca href=\"https://github.com/wojtekmaj\"\u003e\u003ccode\u003e@​wojtekmaj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1350\"\u003eexpressjs/multer#1350\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: drop object-assign dependency by \u003ca href=\"https://github.com/wojtekmaj\"\u003e\u003ccode\u003e@​wojtekmaj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1351\"\u003eexpressjs/multer#1351\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: drop xtend dependency by \u003ca href=\"https://github.com/wojtekmaj\"\u003e\u003ccode\u003e@​wojtekmaj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1352\"\u003eexpressjs/multer#1352\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(gitignore): ignore .nyc_output directory by \u003ca href=\"https://github.com/ShubhamOulkar\"\u003e\u003ccode\u003e@​ShubhamOulkar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1332\"\u003eexpressjs/multer#1332\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typo in README-vi.md regarding file upload by \u003ca href=\"https://github.com/Kunniii\"\u003e\u003ccode\u003e@​Kunniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1366\"\u003eexpressjs/multer#1366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typo in README-pt-br.md for array method by \u003ca href=\"https://github.com/matheushbm192\"\u003e\u003ccode\u003e@​matheushbm192\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1367\"\u003eexpressjs/multer#1367\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eheaders-support-utf8 by \u003ca href=\"https://github.com/Doc999tor\"\u003e\u003ccode\u003e@​Doc999tor\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1210\"\u003eexpressjs/multer#1210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Turkish translation (README-tr.md) by \u003ca href=\"https://github.com/Sabandogan\"\u003e\u003ccode\u003e@​Sabandogan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1360\"\u003eexpressjs/multer#1360\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease: 2.1.0 by \u003ca href=\"https://github.com/UlisesGascon\"\u003e\u003ccode\u003e@​UlisesGascon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1371\"\u003eexpressjs/multer#1371\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wojtekmaj\"\u003e\u003ccode\u003e@​wojtekmaj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1350\"\u003eexpressjs/multer#1350\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ShubhamOulkar\"\u003e\u003ccode\u003e@​ShubhamOulkar\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1332\"\u003eexpressjs/multer#1332\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Kunniii\"\u003e\u003ccode\u003e@​Kunniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1366\"\u003eexpressjs/multer#1366\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/matheushbm192\"\u003e\u003ccode\u003e@​matheushbm192\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1367\"\u003eexpressjs/multer#1367\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Doc999tor\"\u003e\u003ccode\u003e@​Doc999tor\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1210\"\u003eexpressjs/multer#1210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Sabandogan\"\u003e\u003ccode\u003e@​Sabandogan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1360\"\u003eexpressjs/multer#1360\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/expressjs/multer/compare/v2.0.2...v2.1.0\"\u003ehttps://github.com/expressjs/multer/compare/v2.0.2...v2.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/expressjs/multer/blob/main/CHANGELOG.md\"\u003emulter's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-3520\"\u003eCVE-2026-3520\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-5528-5vmv-3xc2\"\u003eGHSA-5528-5vmv-3xc2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix error/abort handling\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.1.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003edefParamCharset\u003c/code\u003e option for UTF-8 filename support (\u003ca href=\"https://redirect.github.com/expressjs/multer/pull/1210\"\u003e#1210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-2359\"\u003eCVE-2026-2359\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-v52c-386h-88mc\"\u003eGHSA-v52c-386h-88mc\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-3304\"\u003eCVE-2026-3304\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-xf7r-hgr6-v32p\"\u003eGHSA-xf7r-hgr6-v32p\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-7338\"\u003eCVE-2025-7338\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-fjgf-rc76-4x9p\"\u003eGHSA-fjgf-rc76-4x9p\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-48997\"\u003eCVE-2025-48997\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-g5hg-p3ph-g8qg\"\u003eGHSA-g5hg-p3ph-g8qg\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBreaking change: The minimum supported Node version is now 10.16.0\u003c/strong\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-47935\"\u003eCVE-2025-47935\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-44fp-w29j-9vj5\"\u003eGHSA-44fp-w29j-9vj5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-47944\"\u003eCVE-2025-47944\u003c/a\u003e (\u003ca href=\"https://github.com/expressjs/multer/security/advisories/GHSA-4pg4-qvpc-4q3h\"\u003eGHSA-4pg4-qvpc-4q3h\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.4.5-lts.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix out-of-band error event from busboy (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1177\"\u003e#1177\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/368c8a10cca11854cf17c24029fefd1eafb1c059\"\u003e\u003ccode\u003e368c8a1\u003c/code\u003e\u003c/a\u003e 2.1.1 (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1380\"\u003e#1380\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/7e66481f8b2e6c54b982b34c152479e096ce2752\"\u003e\u003ccode\u003e7e66481\u003c/code\u003e\u003c/a\u003e 🐛 fix recursion issue\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/643571ef85e9db94b87a777773f4d67156f82a3e\"\u003e\u003ccode\u003e643571e\u003c/code\u003e\u003c/a\u003e ✅ add explicit test for client able to send body without abrupt disconnect\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/e86fa523753f8d54ad0687bf52fb20044b6fa309\"\u003e\u003ccode\u003ee86fa52\u003c/code\u003e\u003c/a\u003e fix error/abort handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/ca37779bf1f531a70af9977805380d0f51d293e2\"\u003e\u003ccode\u003eca37779\u003c/code\u003e\u003c/a\u003e chore(deps): bump actions/checkout from 4.1.1 to 6.0.2 (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1374\"\u003e#1374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/13088f41e3bf8c3fc21d8c2867ffafb42470ed09\"\u003e\u003ccode\u003e13088f4\u003c/code\u003e\u003c/a\u003e chore(deps): bump actions/upload-artifact from 4.5.0 to 7.0.0 (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1375\"\u003e#1375\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/bc6a1d1374f7ddc9baf9d22bf7c30f831c621e3a\"\u003e\u003ccode\u003ebc6a1d1\u003c/code\u003e\u003c/a\u003e chore(deps): bump github/codeql-action from 3.24.7 to 4.32.4 (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1376\"\u003e#1376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/c496e931263a901ccfc0821ac21768ac23786f77\"\u003e\u003ccode\u003ec496e93\u003c/code\u003e\u003c/a\u003e chore(deps): bump coverallsapp/github-action from 1.2.5 to 2.3.6 (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1377\"\u003e#1377\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/fa173d30d01f4e18a8be74570b2770c7230b8b05\"\u003e\u003ccode\u003efa173d3\u003c/code\u003e\u003c/a\u003e chore(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.3 (\u003ca href=\"https://redirect.github.com/expressjs/multer/issues/1378\"\u003e#1378\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/expressjs/multer/commit/17d7f5193a237ebfd4c19274c7a6729538b4a9a0\"\u003e\u003ccode\u003e17d7f51\u003c/code\u003e\u003c/a\u003e chore: add node version to 25.x in CI\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/expressjs/multer/compare/v1.4.5-lts.1...v2.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ulisesgascon\"\u003eulisesgascon\u003c/a\u003e, a new releaser for multer since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `mysql2` from 2.3.3 to 3.9.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sidorares/node-mysql2/releases\"\u003emysql2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.9.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.7...v3.9.8\"\u003e3.9.8\u003c/a\u003e (2024-05-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e sanitize fields and tables when using nestTables (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2702\"\u003e#2702\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/efe3db527a2c94a63c2d14045baba8dfefe922bc\"\u003eefe3db5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport deno + caching_sha2_password FULL_AUTHENTICATION_PACKET flow (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2704\"\u003e#2704\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/2e0369445ba1581b427f78689a935ac3debfbf07\"\u003e2e03694\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypings:\u003c/strong\u003e typo from \u003ccode\u003ejonServerPublicKey\u003c/code\u003e to \u003ccode\u003eonServerPublicKey\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2699\"\u003e#2699\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/8b5f6911b69b766a3732fa160049d263460da74b\"\u003e8b5f691\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.9.7\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.6...v3.9.7\"\u003e3.9.7\u003c/a\u003e (2024-04-21)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e sanitize timezone parameter value to prevent code injection - report by zhaoyudi (Nebulalab) (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2608\"\u003e#2608\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/7d4b098c7e29d5a6cb9eac2633bfcc2f0f1db713\"\u003e7d4b098\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.9.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.5...v3.9.6\"\u003e3.9.6\u003c/a\u003e (2024-04-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebinary parser sometimes reads out of packet bounds when results contain null and typecast is false (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2601\"\u003e#2601\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/705835d06ff437cf0bf3169dac0a5f68002c4f87\"\u003e705835d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.9.5\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.4...v3.9.5\"\u003e3.9.5\u003c/a\u003e (2024-04-17)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erevert breaking change in results creation (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2591\"\u003e#2591\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/f7c60d01a49666130f51d3847ccfdd3d6e3d33e9\"\u003ef7c60d0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.9.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.3...v3.9.4\"\u003e3.9.4\u003c/a\u003e (2024-04-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSSL:\u003c/strong\u003e separate each certificate into an individual item \u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2542\"\u003e#2542\u003c/a\u003e (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/63f1055c631e665179cad686afd3e4f1d5c162b2\"\u003e63f1055\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e improve supportBigNumbers and bigNumberStrings sanitization (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2572\"\u003e#2572\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/74abf9ef94d76114d9a09415e28b496522a94805\"\u003e74abf9e\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixes a potential RCE attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e improve results object creation (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2574\"\u003e#2574\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/4a964a3910a4b8de008696c554ab1b492e9b4691\"\u003e4a964a3\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixes a potential Prototype Pollution attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e improve the contribution guidelines (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2552\"\u003e#2552\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/8a818ce0f30654eba854759e6409c0ac856fc448\"\u003e8a818ce\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.9.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.2...v3.9.3\"\u003e3.9.3\u003c/a\u003e (2024-03-26)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sidorares/node-mysql2/blob/master/Changelog.md\"\u003emysql2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.7...v3.9.8\"\u003e3.9.8\u003c/a\u003e (2024-05-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e sanitize fields and tables when using nestTables (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2702\"\u003e#2702\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/efe3db527a2c94a63c2d14045baba8dfefe922bc\"\u003eefe3db5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport deno + caching_sha2_password FULL_AUTHENTICATION_PACKET flow (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2704\"\u003e#2704\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/2e0369445ba1581b427f78689a935ac3debfbf07\"\u003e2e03694\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypings:\u003c/strong\u003e typo from \u003ccode\u003ejonServerPublicKey\u003c/code\u003e to \u003ccode\u003eonServerPublicKey\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2699\"\u003e#2699\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/8b5f6911b69b766a3732fa160049d263460da74b\"\u003e8b5f691\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.6...v3.9.7\"\u003e3.9.7\u003c/a\u003e (2024-04-21)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e sanitize timezone parameter value to prevent code injection (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2608\"\u003e#2608\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/7d4b098c7e29d5a6cb9eac2633bfcc2f0f1db713\"\u003e7d4b098\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.5...v3.9.6\"\u003e3.9.6\u003c/a\u003e (2024-04-18)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebinary parser sometimes reads out of packet bounds when results contain null and typecast is false (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2601\"\u003e#2601\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/705835d06ff437cf0bf3169dac0a5f68002c4f87\"\u003e705835d\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.4...v3.9.5\"\u003e3.9.5\u003c/a\u003e (2024-04-17)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003erevert breaking change in results creation (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2591\"\u003e#2591\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/f7c60d01a49666130f51d3847ccfdd3d6e3d33e9\"\u003ef7c60d0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.3...v3.9.4\"\u003e3.9.4\u003c/a\u003e (2024-04-09)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e improve the contribution guidelines (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2552\"\u003e#2552\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/8a818ce0f30654eba854759e6409c0ac856fc448\"\u003e8a818ce\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e improve results object creation (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2574\"\u003e#2574\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/4a964a3910a4b8de008696c554ab1b492e9b4691\"\u003e4a964a3\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e improve supportBigNumbers and bigNumberStrings sanitization (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2572\"\u003e#2572\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/74abf9ef94d76114d9a09415e28b496522a94805\"\u003e74abf9e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.2...v3.9.3\"\u003e3.9.3\u003c/a\u003e (2024-03-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esecurity:\u003c/strong\u003e improve cache key formation (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2424\"\u003e#2424\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/0d54b0ca6498c823098426038162ef10df02c818\"\u003e0d54b0c\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixes a potential parser cache poisoning attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eupdate Amazon RDS SSL CA cert (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/pull/2131\"\u003e#2131\u003c/a\u003e) (\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/d9dccfd837d701f377574b85a05586be89015460\"\u003ed9dccfd\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v3.9.1...v3.9.2\"\u003e3.9.2\u003c/a\u003e (2024-02-26)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/f637d3fb8e3813e1110c475b1eedf75d24992581\"\u003e\u003ccode\u003ef637d3f\u003c/code\u003e\u003c/a\u003e chore(master): release 3.9.8 (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2700\"\u003e#2700\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/efe3db527a2c94a63c2d14045baba8dfefe922bc\"\u003e\u003ccode\u003eefe3db5\u003c/code\u003e\u003c/a\u003e fix(security): sanitize fields and tables when using nestTables (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2702\"\u003e#2702\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/2e0369445ba1581b427f78689a935ac3debfbf07\"\u003e\u003ccode\u003e2e03694\u003c/code\u003e\u003c/a\u003e fix: support deno + caching_sha2_password FULL_AUTHENTICATION_PACKET flow (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2\"\u003e#2\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/8b5f6911b69b766a3732fa160049d263460da74b\"\u003e\u003ccode\u003e8b5f691\u003c/code\u003e\u003c/a\u003e fix(typings): typo from \u003ccode\u003ejonServerPublicKey\u003c/code\u003e to \u003ccode\u003eonServerPublicKey\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2699\"\u003e#2699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/5c75802493cb37997d0eddf4fd9d1e9320377007\"\u003e\u003ccode\u003e5c75802\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump tsx from 4.10.5 to 4.11.0 in /website (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2695\"\u003e#2695\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/179769f5c16bef13d189507afe8a30963d331bfd\"\u003e\u003ccode\u003e179769f\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​easyops-cn/docusaurus-search-local\u003c/code\u003e in /website (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2696\"\u003e#2696\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/56289e275d52bbb804c1e779bfc7fb84927ae6e3\"\u003e\u003ccode\u003e56289e2\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump poku from 1.12.1 to 1.13.0 (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2698\"\u003e#2698\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/b0293083fb287f62bd9f54f0a40485bddd91d986\"\u003e\u003ccode\u003eb029308\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump poku from 1.12.1 to 1.13.0 in /website (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2697\"\u003e#2697\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/539acb802aa388d71a4397013a47c4b7f3a4350f\"\u003e\u003ccode\u003e539acb8\u003c/code\u003e\u003c/a\u003e build(deps): bump lucide-react from 0.378.0 to 0.379.0 in /website (\u003ca href=\"https://redirect.github.com/sidorares/node-mysql2/issues/2693\"\u003e#2693\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sidorares/node-mysql2/commit/dc80580c70016ae16d7027475d7ac29cebf714d0\"\u003e\u003ccode\u003edc80580\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e from 7.9.0 to 7.10.0 i...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sidorares/node-mysql2/compare/v2.3.3...v3.9.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `underscore` from 1.13.7 to 1.13.8\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/9374840c22e348083d0d072f30dc980622523259\"\u003e\u003ccode\u003e9374840\u003c/code\u003e\u003c/a\u003e Merge branch 'release/1.13.8'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/309ad7e6658b927ca5f28ce069665d9c523c53e5\"\u003e\u003ccode\u003e309ad7e\u003c/code\u003e\u003c/a\u003e Re-generate annotated sources and minified codemaps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/a1ac1d33537662304d4985f61301112ea0f1f051\"\u003e\u003ccode\u003ea1ac1d3\u003c/code\u003e\u003c/a\u003e Add links to diff and docs in 1.13.8 change log entry\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/b579595ec9da8db15196bc1d3547833458939c44\"\u003e\u003ccode\u003eb579595\u003c/code\u003e\u003c/a\u003e Mention CVE-2026-27601 in comments and documentation (\u003ca href=\"https://redirect.github.com/jashkenas/underscore/issues/3011\"\u003e#3011\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/45ea015a99069780db492a114c1e709dd77d3b89\"\u003e\u003ccode\u003e45ea015\u003c/code\u003e\u003c/a\u003e Revert obfuscations from 42823bb.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/4a4019e00beb2c42eda20c05f375a35983b748f0\"\u003e\u003ccode\u003e4a4019e\u003c/code\u003e\u003c/a\u003e Update minified bundles\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/1ccfdd0c50470d862bb553c1e0c70567a59d4355\"\u003e\u003ccode\u003e1ccfdd0\u003c/code\u003e\u003c/a\u003e Add preliminary release notes for 1.13.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/42823bbff87e9fe82855d5adb5ba7ff839f8b446\"\u003e\u003ccode\u003e42823bb\u003c/code\u003e\u003c/a\u003e Temporarily obfuscate comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/a6e23ae9647461ec33ad9f92a2ecfc220eea0a84\"\u003e\u003ccode\u003ea6e23ae\u003c/code\u003e\u003c/a\u003e Make _.isEqual nonrecursive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jashkenas/underscore/commit/f2b516441ab99b82045f2a336c348899e6527e00\"\u003e\u003ccode\u003ef2b5164\u003c/code\u003e\u003c/a\u003e Add regression test against stack overflow in _.isEqual\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jashkenas/underscore/compare/1.13.7...1.13.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 2.0.1 to 2.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 10.4.5 to 10.5.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/56774ef73b495eb0b17cdd0f42921f5ef62297c1\"\u003e\u003ccode\u003e56774ef\u003c/code\u003e\u003c/a\u003e 10.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/1e4e297342a09f2aa0ced87fcd4a70ddc325d75f\"\u003e\u003ccode\u003e1e4e297\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v10.4.5...v10.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.0 to 11.1.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/56774ef73b495eb0b17cdd0f42921f5ef62297c1\"\u003e\u003ccode\u003e56774ef\u003c/code\u003e\u003c/a\u003e 10.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/1e4e297342a09f2aa0ced87fcd4a70ddc325d75f\"\u003e\u003ccode\u003e1e4e297\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v10.4.5...v10.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 3.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 5.1.6 to 5.1.9\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 9.0.5 to 9.0.9\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fast-xml-parser` from 4.5.0 to 5.5.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/releases\"\u003efast-xml-parser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003efix entity expansion and incorrect replacement and performance\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.5...v5.5.6\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.5...v5.5.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003esupport onDangerousProperty\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.3...v5.5.5\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.3...v5.5.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eupdate dependecies to fix typings\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.1...v5.5.2\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.5.1...v5.5.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eintegrate path-expression-matcher\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport path-expression-matcher\u003c/li\u003e\n\u003cli\u003efix: stopNode should not be parsed\u003c/li\u003e\n\u003cli\u003eperformance improvement for stopNode checking\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eSeparate Builder\u003c/h2\u003e\n\u003cp\u003eXML Builder was the part of \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-builder\"\u003efast-xml-parser\u003c/a\u003e for years. But considering that any bug in builder may false-alarm the users who are only using parser and vice-versa, we have decided to split it into a separate package.\u003c/p\u003e\n\u003ch2\u003eMigration\u003c/h2\u003e\n\u003cp\u003eTo migrate to fast-xml-builder;\u003c/p\u003e\n\u003cp\u003eFrom\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eimport { XMLBuilder } from \u0026quot;fast-xml-parser\u0026quot;;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eTo\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eimport  XMLBuilder  from \u0026quot;fast-xml-builder\u0026quot;;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eXMLBuilder will be removed from current package in any next major version of this library. So better to migrate.\u003c/p\u003e\n\u003ch2\u003esupport strictReservedNames\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.9...v5.3.9\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.9...v5.3.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ehandle non-array input for XML builder \u0026amp;\u0026amp; support maxNestedTags\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport maxNestedTags\u003c/li\u003e\n\u003cli\u003ehandle non-array input for XML builder when preserveOrder is true (By \u003ca href=\"https://github.com/Angelopvtac\"\u003eAngelo Coetzee\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esave use of js properies\n\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.7...v5.3.8\"\u003ehttps://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.7...v5.3.8\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eCJS typing fix\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUnexport \u003ccode\u003eX2jOptions\u003c/code\u003e at declaration site by \u003ca href=\"https://github.com/Drarig29\"\u003e\u003ccode\u003e@​Drarig29\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/pull/787\"\u003eNaturalIntelligence/fast-xml-parser#787\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Drarig29\"\u003e\u003ccode\u003e@​Drarig29\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/NaturalIntelligence/fast-xml-parser/pull/787\"\u003eNaturalIntelligence/fast-xml-parser#787\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e...\n\n_Description has been truncated_","html_url":"https://github.com/EmpCloud/emp-monitor/pull/41","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/EmpCloud%2Femp-monitor/issues/41","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/41/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-03-10T19:32:05.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"4053794401","node_id":"PR_kwDOOySMK87JfGHC","number":21,"state":"closed","title":"Bump the npm_and_yarn group across 13 directories with 21 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-11T01:35:15.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-10T19:32:05.000Z","updated_at":"2026-03-11T01:35:17.000Z","time_to_close":21790,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":21,"packages":[{"name":"aws-sdk","old_version":"2.1448.0","new_version":"2.1693.0","repository_url":"https://github.com/aws/aws-sdk-js"},{"name":"axios","old_version":"1.9.0","new_version":"1.13.5","repository_url":"https://github.com/axios/axios"},{"name":"bn.js","old_version":"5.2.1","new_version":"5.2.3","repository_url":"https://github.com/indutny/bn.js"},{"name":"fastify","old_version":"4.29.0","new_version":"5.8.1","repository_url":"https://github.com/fastify/fastify"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"next","old_version":"13.5.11","new_version":"15.5.10","repository_url":"https://github.com/vercel/next.js"},{"name":"simple-git","old_version":"3.25.0","new_version":"3.32.3","repository_url":"https://github.com/steveukx/git-js"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"base-x","old_version":"3.0.9","new_version":"3.0.11","repository_url":"https://github.com/cryptocoinjs/base-x"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"cipher-base","old_version":"1.0.4","new_version":"1.0.7","repository_url":"https://github.com/crypto-browserify/cipher-base"},{"name":"dottie","old_version":"2.0.6","new_version":"2.0.7","repository_url":"https://github.com/mickhansen/dottie.js"},{"name":"form-data","old_version":"4.0.0","new_version":"4.0.5","repository_url":"https://github.com/form-data/form-data"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"qs","old_version":"6.11.2","new_version":"6.13.0","repository_url":"https://github.com/ljharb/qs"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tar","old_version":"6.1.15","new_version":"6.2.1","repository_url":"https://github.com/isaacs/node-tar"},{"name":"undici","old_version":"5.28.4","new_version":"5.29.0","repository_url":"https://github.com/nodejs/undici"},{"name":"validator","old_version":"13.11.0","new_version":"13.15.26","repository_url":"https://github.com/validatorjs/validator.js"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 21 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk](https://github.com/aws/aws-sdk-js) | `2.1448.0` | `2.1693.0` |\n| [axios](https://github.com/axios/axios) | `1.9.0` | `1.13.5` |\n| [bn.js](https://github.com/indutny/bn.js) | `5.2.1` | `5.2.3` |\n| [fastify](https://github.com/fastify/fastify) | `4.29.0` | `5.8.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [next](https://github.com/vercel/next.js) | `13.5.11` | `15.5.10` |\n| [simple-git](https://github.com/steveukx/git-js/tree/HEAD/simple-git) | `3.25.0` | `3.32.3` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [base-x](https://github.com/cryptocoinjs/base-x) | `3.0.9` | `3.0.11` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [cipher-base](https://github.com/crypto-browserify/cipher-base) | `1.0.4` | `1.0.7` |\n| [dottie](https://github.com/mickhansen/dottie.js) | `2.0.6` | `2.0.7` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [qs](https://github.com/ljharb/qs) | `6.11.2` | `6.13.0` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.15` | `6.2.1` |\n| [undici](https://github.com/nodejs/undici) | `5.28.4` | `5.29.0` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.11.0` | `13.15.26` |\n\nBumps the npm_and_yarn group with 1 update in the /packages/account-postgres-sink-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/active-device-oracle directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/distributor-oracle directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/docsite directory: [next](https://github.com/vercel/next.js).\nBumps the npm_and_yarn group with 1 update in the /packages/fanout-metadata-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/faucet-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/helium-vote-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/migration-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/monitor-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/rewards-oracle-faucet-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/tokens-to-rent-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/vsr-metadata-service directory: [fastify](https://github.com/fastify/fastify).\n\nUpdates `aws-sdk` from 2.1448.0 to 2.1693.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js/releases\"\u003eaws-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.1693.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1692.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1691.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1690.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1689.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1688.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1687.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1686.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1685.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1684.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1683.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1682.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1681.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1680.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1679.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1678.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1677.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/9d3c66eca8c4416a9d347d0703f27b65775d65ef\"\u003e\u003ccode\u003e9d3c66e\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1693.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c039567cee58b50a44f53f30318fa21f36c42ecc\"\u003e\u003ccode\u003ec039567\u003c/code\u003e\u003c/a\u003e test(client-elastictranscoder): remove feature test (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4711\"\u003e#4711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/f5b1a6f0aebb477204d979091d654649f29ad9ce\"\u003e\u003ccode\u003ef5b1a6f\u003c/code\u003e\u003c/a\u003e docs: end-of-support (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4706\"\u003e#4706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/657d6feb00447c8be1d65158a0ecc0585b70ed60\"\u003e\u003ccode\u003e657d6fe\u003c/code\u003e\u003c/a\u003e chore: use ssh private key for git sync (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4705\"\u003e#4705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c12585baeb9197158cd50975af66856617732aea\"\u003e\u003ccode\u003ec12585b\u003c/code\u003e\u003c/a\u003e chore: remove regression label management (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4699\"\u003e#4699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/966fa6c316dbb11ca9277564ff7120e6b16467f4\"\u003e\u003ccode\u003e966fa6c\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1692.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/5d0e38adbbc1a3fd6e6bf7c48cd7e209e9eb0b5f\"\u003e\u003ccode\u003e5d0e38a\u003c/code\u003e\u003c/a\u003e Delete EC2 launch configuration e2e tests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4685\"\u003e#4685\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/b9ce3461a495dcf4f4a0be133e103d98130847a6\"\u003e\u003ccode\u003eb9ce346\u003c/code\u003e\u003c/a\u003e chore: fix issue config (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4683\"\u003e#4683\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c06668172b233e0b2ded1afc48f0a11f6b79735c\"\u003e\u003ccode\u003ec066681\u003c/code\u003e\u003c/a\u003e Update issue template config and disable docs requests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4682\"\u003e#4682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/163a7cfc86308e0b54245c04fb7b317bcd3893b0\"\u003e\u003ccode\u003e163a7cf\u003c/code\u003e\u003c/a\u003e Modified bug issue template to add checkbox to report potential regression. (...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-js/compare/v2.1448.0...v2.1693.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.9.0 to 1.13.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.5\u003c/h2\u003e\n\u003ch2\u003eRelease 1.13.5\u003c/h2\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fixed a potential \u003cstrong\u003eDenial of Service\u003c/strong\u003e issue involving the \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBug fix:\u003c/strong\u003e Resolved an issue where \u003ccode\u003eAxiosError\u003c/code\u003e could be missing the \u003ccode\u003estatus\u003c/code\u003e field on and after \u003cstrong\u003ev1.13.3\u003c/strong\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch4\u003eSecurity\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix Denial of Service via \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix/5657. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7313\"\u003e#7313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure \u003ccode\u003estatus\u003c/code\u003e is present in \u003ccode\u003eAxiosError\u003c/code\u003e on and after v1.13.3. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFeatures / Improvements\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAdd input validation to \u003ccode\u003eisAbsoluteURL\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRefactor: bump minor package versions. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7356\"\u003e#7356\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDocumentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eClarify object-check comment. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix deprecated \u003ccode\u003eBuffer\u003c/code\u003e constructor usage and README formatting. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCI / Maintenance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eChore: fix issues with YAML. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7355\"\u003e#7355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: update workflow YAMLs. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: fix run condition. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDev deps: bump \u003ccode\u003ekarma-sourcemap-loader\u003c/code\u003e from 0.3.8 to 0.4.0. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChore(release): prepare release 1.13.5. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sachin11063\"\u003e\u003ccode\u003e@​sachin11063\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/asmitha-16\"\u003e\u003ccode\u003e@​asmitha-16\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog:\u003c/strong\u003e \u003ca href=\"https://github.com/axios/axios/compare/v1.13.4...v1.13.5\"\u003ehttps://github.com/axios/axios/compare/v1.13.4...v1.13.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.13.4\u003c/h2\u003e\n\u003ch2\u003eOverview\u003c/h2\u003e\n\u003cp\u003eThe release addresses issues discovered in v1.13.3 and includes significant CI/CD improvements.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v1.13.3...v1.13.4\"\u003ev1.13.3...v1.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's New in v1.13.4\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix: issues with version 1.13.3\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7352\"\u003e#7352\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ee90dfc28abffbb61e24974b2bd3139a4a40ac76\"\u003eee90dfc\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixed issues discovered in v1.13.3 release\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7201) [#7201](https://github.com/axios/axios/issues/7201) )\"\u003ecodenomnom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Nandann018-ux\" title=\"+60/-10 ([#7272](https://github.com/axios/axios/issues/7272) )\"\u003eNandan Acharya\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/KernelDeimos\" title=\"+22/-40 ([#7042](https://github.com/axios/axios/issues/7042) )\"\u003eEric Dubé\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/tiborpilz\" title=\"+40/-4 ([#5551](https://github.com/axios/axios/issues/5551) )\"\u003eTibor Pilz\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/joaoGabriel55\" title=\"+31/-4 ([#6314](https://github.com/axios/axios/issues/6314) )\"\u003eGabriel Quaresma\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/turadg\" title=\"+23/-6 ([#6265](https://github.com/axios/axios/issues/6265) )\"\u003eTuradg Aleahmad\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/29f75425f0c9f73021f5eedc869c176e30e05fe7\"\u003e\u003ccode\u003e29f7542\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.13.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/431c3a361490a2e3d5ac5d9e08d66d4bb5f3cd2a\"\u003e\u003ccode\u003e431c3a3\u003c/code\u003e\u003c/a\u003e ci: fix run condition (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9ff3a78ad72ecd665a4b673686f1517d824284bf\"\u003e\u003ccode\u003e9ff3a78\u003c/code\u003e\u003c/a\u003e ci: update ymls (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/265b71234c20fabbd6d691858c65a7e9c978659f\"\u003e\u003ccode\u003e265b712\u003c/code\u003e\u003c/a\u003e docs: fix deprecated Buffer constructor and formatting issues in README (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/475e75a260668d227aec9f77735a49748c9041ff\"\u003e\u003ccode\u003e475e75a\u003c/code\u003e\u003c/a\u003e feat: add input validation to isAbsoluteURL (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57\"\u003e\u003ccode\u003e28c7215\u003c/code\u003e\u003c/a\u003e fix: Denial of Service via \u003cstrong\u003eproto\u003c/strong\u003e Key in mergeConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/04cf01969ed58f96920da032f340bfe4614aab90\"\u003e\u003ccode\u003e04cf019\u003c/code\u003e\u003c/a\u003e docs: clarify object check comment (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/696fa753c5366afbd21859c294c64c9ff2b359ab\"\u003e\u003ccode\u003e696fa75\u003c/code\u003e\u003c/a\u003e fix: status is missing in AxiosError on and after v1.13.3 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/569f028a5878faaec8d7d138ba686aac407bda4c\"\u003e\u003ccode\u003e569f028\u003c/code\u003e\u003c/a\u003e fix: added a option to choose between legacy and the new request/response int...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/44b7c9f0c4900fd8784f18e871199402f07fc69f\"\u003e\u003ccode\u003e44b7c9f\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump karma-sourcemap-loader (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.9.0...v1.13.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bn.js` from 5.2.1 to 5.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/indutny/bn.js/blob/master/CHANGELOG.md\"\u003ebn.js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.2.3 / 2026-02-19\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.2 / 2025-04-25\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/ea6c072a951493ca99e5cd5f8da3851b90116271\"\u003e\u003ccode\u003eea6c072\u003c/code\u003e\u003c/a\u003e 5.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/33df26b5771e824f303a79ec6407409376baa64b\"\u003e\u003ccode\u003e33df26b\u003c/code\u003e\u003c/a\u003e fix imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/6db7c3818569423b94ebcf2bdff90fcfb9c47f6d\"\u003e\u003ccode\u003e6db7c38\u003c/code\u003e\u003c/a\u003e 5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/c7e1a532566c83fd0297ff7669c227b824928bf4\"\u003e\u003ccode\u003ec7e1a53\u003c/code\u003e\u003c/a\u003e Fix imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/4cc0bfa5195d54876a6b807827e582522c813019\"\u003e\u003ccode\u003e4cc0bfa\u003c/code\u003e\u003c/a\u003e docs: mention the max plain JS number argument value (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/307\"\u003e#307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/5df40f81ea8afb835b909bb7c21e0833cdeb6a30\"\u003e\u003ccode\u003e5df40f8\u003c/code\u003e\u003c/a\u003e Document \u003ccode\u003elength\u003c/code\u003e unit in \u003ccode\u003etoBuffer(...)\u003c/code\u003e input (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/299\"\u003e#299\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/indutny/bn.js/compare/v5.2.1...v5.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fastify` from 4.29.0 to 5.8.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fastify/releases\"\u003efastify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.8.1\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cp\u003eFixes \u0026quot;Missing End Anchor in \u0026quot;subtypeNameReg\u0026quot; Allows Malformed Content-Types to Pass Validation\u0026quot;: \u003ca href=\"https://github.com/fastify/fastify/security/advisories/GHSA-573f-x89g-hqp9\"\u003ehttps://github.com/fastify/fastify/security/advisories/GHSA-573f-x89g-hqp9\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eCVE-2026-3419\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.8.0...v5.8.1\"\u003ehttps://github.com/fastify/fastify/compare/v5.8.0...v5.8.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs(request): add host security warning references by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6476\"\u003efastify/fastify#6476\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix note style by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6487\"\u003efastify/fastify#6487\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: rename deploy website ci by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6492\"\u003efastify/fastify#6492\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: support pino v9 and v10 by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6496\"\u003efastify/fastify#6496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update logger types and fix TODO comment by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6470\"\u003efastify/fastify#6470\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(test-types): migrate dummy-plugin to FastifyPluginAsync by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6472\"\u003efastify/fastify#6472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix markdown typo in README.md by \u003ca href=\"https://github.com/droppingbeans\"\u003e\u003ccode\u003e@​droppingbeans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6491\"\u003efastify/fastify#6491\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: cover non-numeric content-length client error path by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6500\"\u003efastify/fastify#6500\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove tests-checker workflow by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6481\"\u003efastify/fastify#6481\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove stale.yml file by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6504\"\u003efastify/fastify#6504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(security): remove hackerone references; change note style by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6501\"\u003efastify/fastify#6501\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: rename \u003ccode\u003e@​sinclair/typebox\u003c/code\u003e to typebox by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6494\"\u003efastify/fastify#6494\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(links-check): add external link checker using linkinator-action by \u003ca href=\"https://github.com/umxr\"\u003e\u003ccode\u003e@​umxr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6386\"\u003efastify/fastify#6386\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: upgrade borp to v1.0.0 by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6510\"\u003efastify/fastify#6510\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add OpenJS CNA reference to SECURITY.md by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6516\"\u003efastify/fastify#6516\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: avoid mutating shared routerOptions across instances by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6515\"\u003efastify/fastify#6515\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(types): accept async route hooks in shorthand options by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6514\"\u003efastify/fastify#6514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Improve shutdown lifecycle documentation by \u003ca href=\"https://github.com/kibertoad\"\u003e\u003ccode\u003e@​kibertoad\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6517\"\u003efastify/fastify#6517\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove unused \u003ccode\u003etsconfig.eslint.json\u003c/code\u003e by \u003ca href=\"https://github.com/mrazauskas\"\u003e\u003ccode\u003e@​mrazauskas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6524\"\u003efastify/fastify#6524\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: First-class support for handler-level timeouts by \u003ca href=\"https://github.com/kibertoad\"\u003e\u003ccode\u003e@​kibertoad\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6521\"\u003efastify/fastify#6521\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(security): clarify insecureHTTPParser threat model scope by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6533\"\u003efastify/fastify#6533\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(license): standardise license notice by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6511\"\u003efastify/fastify#6511\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: clarify anyOf nullable coercion behavior with primitive types by \u003ca href=\"https://github.com/slegarraga\"\u003e\u003ccode\u003e@​slegarraga\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6531\"\u003efastify/fastify#6531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove format placeholder from FST_ERR_CTP_INVALID_MEDIA_TYPE message by \u003ca href=\"https://github.com/super-mcgin\"\u003e\u003ccode\u003e@​super-mcgin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6528\"\u003efastify/fastify#6528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(reference/hooks): fix note style by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6538\"\u003efastify/fastify#6538\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Bump lycheeverse/lychee-action from 2.7.0 to 2.8.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6539\"\u003efastify/fastify#6539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Bump actions/dependency-review-action from 4.8.2 to 4.8.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6540\"\u003efastify/fastify#6540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Bump markdownlint-cli2 from 0.20.0 to 0.21.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6542\"\u003efastify/fastify#6542\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove broken links and add ecosystem link validator by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6421\"\u003efastify/fastify#6421\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(validate-ecoystem-links): add job level permission by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6545\"\u003efastify/fastify#6545\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estyle: remove trailing whitespace by \u003ca href=\"https://github.com/Fdawgs\"\u003e\u003ccode\u003e@​Fdawgs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6543\"\u003efastify/fastify#6543\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/droppingbeans\"\u003e\u003ccode\u003e@​droppingbeans\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6491\"\u003efastify/fastify#6491\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/umxr\"\u003e\u003ccode\u003e@​umxr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6386\"\u003efastify/fastify#6386\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slegarraga\"\u003e\u003ccode\u003e@​slegarraga\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6531\"\u003efastify/fastify#6531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/super-mcgin\"\u003e\u003ccode\u003e@​super-mcgin\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6528\"\u003efastify/fastify#6528\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.4...v5.8.0\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.4...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/073ff8132f350aaa53935231019499e983cb9794\"\u003e\u003ccode\u003e073ff81\u003c/code\u003e\u003c/a\u003e Bumped v5.8.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/67f6c9b32cb3623d3c9470cc17ed830dd2f083d7\"\u003e\u003ccode\u003e67f6c9b\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/161578a366edd40ef6d7eb06bfd57bc2b55f37b6\"\u003e\u003ccode\u003e161578a\u003c/code\u003e\u003c/a\u003e chore: sync version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/9b06a781f90d5a8d5ac5fc43eb2fddc392864681\"\u003e\u003ccode\u003e9b06a78\u003c/code\u003e\u003c/a\u003e Bumped v5.8.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/bbdfe82ae891199ba0d2b49326b7ddce5f103ab3\"\u003e\u003ccode\u003ebbdfe82\u003c/code\u003e\u003c/a\u003e style: remove trailing whitespace (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6543\"\u003e#6543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/cd58ed45d3c3b25cae3cfaa27e9c76a1c8865d0f\"\u003e\u003ccode\u003ecd58ed4\u003c/code\u003e\u003c/a\u003e ci(validate-ecoystem-links): add job level permission (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6545\"\u003e#6545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/2590592da900172e04526f36dfe4dac617022469\"\u003e\u003ccode\u003e2590592\u003c/code\u003e\u003c/a\u003e ci: remove broken links and add ecosystem link validator (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6421\"\u003e#6421\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/09b55b6ca6a3244df9f02b02157db41777198d4f\"\u003e\u003ccode\u003e09b55b6\u003c/code\u003e\u003c/a\u003e chore: Bump markdownlint-cli2 from 0.20.0 to 0.21.0 (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6542\"\u003e#6542\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/43c4e386c374c56a7de326e20f51eb7a71c0edda\"\u003e\u003ccode\u003e43c4e38\u003c/code\u003e\u003c/a\u003e chore: Bump actions/dependency-review-action from 4.8.2 to 4.8.3 (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6540\"\u003e#6540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/3b4057303e63172ed8a4dde8d35f6ce1f7a5eb58\"\u003e\u003ccode\u003e3b40573\u003c/code\u003e\u003c/a\u003e chore: Bump lycheeverse/lychee-action from 2.7.0 to 2.8.0 (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6539\"\u003e#6539\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fastify/compare/v4.29.0...v5.8.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `next` from 13.5.11 to 15.5.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vercel/next.js/releases\"\u003enext's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev15.5.10\u003c/h2\u003e\n\u003cp\u003ePlease refer the following changelogs for more information about this security release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://vercel.com/changelog/summaries-of-cve-2025-59471-and-cve-2025-59472\"\u003ehttps://vercel.com/changelog/summaries-of-cve-2025-59471-and-cve-2025-59472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003ehttps://vercel.com/changelog/summary-of-cve-2026-23864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev15.4.11\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.3.9\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.2.9\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.1.12\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.0.8\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/60a2aa97b6692d3a56e483f0ff93febaf6f33fd6\"\u003e\u003ccode\u003e60a2aa9\u003c/code\u003e\u003c/a\u003e v15.5.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/e5b834d208fe0edf64aa26b5d76dcf6a176500ec\"\u003e\u003ccode\u003ee5b834d\u003c/code\u003e\u003c/a\u003e fetch(next/image): reduce maximumResponseBody from 300MB to 50MB (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/88588\"\u003e#88588\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/39a2f6a8d13dfa50cee843f93241c8c1dbaf801e\"\u003e\u003ccode\u003e39a2f6a\u003c/code\u003e\u003c/a\u003e feat(next/image)!: add \u003ccode\u003eimages.maximumResponseBody\u003c/code\u003e config (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/88183\"\u003e#88183\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/bf9f0843edab3a7cf9d4c85b315bc33c87b282ce\"\u003e\u003ccode\u003ebf9f084\u003c/code\u003e\u003c/a\u003e Sync DoS mitigations for React Flight\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/c5de33e93ccccaf3bee60cf50603e2152f9886e1\"\u003e\u003ccode\u003ec5de33e\u003c/code\u003e\u003c/a\u003e v15.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/dd233994aeb24e906cdb9aedca5447cdef401792\"\u003e\u003ccode\u003edd23399\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/facebook/react/issues/35351\"\u003efacebook/react#35351\u003c/a\u003e for 15.5.8 (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/87086\"\u003e#87086\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/7526cd6f24300726964eaba78927fe2a9c3fed5e\"\u003e\u003ccode\u003e7526cd6\u003c/code\u003e\u003c/a\u003e v15.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/1e9ec4133af3657964833bfcc9abb0ee73fb19f0\"\u003e\u003ccode\u003e1e9ec41\u003c/code\u003e\u003c/a\u003e Update React Version (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/41\"\u003e#41\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/16141e5df9ce51136ba42988b574981f89d01081\"\u003e\u003ccode\u003e16141e5\u003c/code\u003e\u003c/a\u003e Update React Version (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/30\"\u003e#30\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/e01e589e181d66d48c57698238b8b7f59218dfef\"\u003e\u003ccode\u003ee01e589\u003c/code\u003e\u003c/a\u003e Backport Next.js changes to v15.5.8 (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/23\"\u003e#23\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vercel/next.js/compare/v13.5.11...v15.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `simple-git` from 3.25.0 to 3.32.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/releases\"\u003esimple-git's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esimple-git@3.32.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ef704208: Enhanced \u003ccode\u003eprotocol.allow\u003c/code\u003e checks in \u003ccode\u003eallowUnsafeExtProtocol\u003c/code\u003e handling.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/CodeAnt-AI-Security\"\u003e\u003ccode\u003e@​CodeAnt-AI-Security\u003c/code\u003e\u003c/a\u003e for identifying the issue\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8d02097: Enhanced clone unsafe switch detection.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e23b070f: Fix regex for detecting unsafe clone options\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/stevenwdv\"\u003e\u003ccode\u003e@​stevenwdv\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.32.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e1effd8e: Enhances the \u003ccode\u003eunsafe\u003c/code\u003e plugin to block additional cases where the \u003ccode\u003e-u\u003c/code\u003e switch may be disguised\nalong with other single character options.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/JuHwiSang\"\u003e\u003ccode\u003e@​JuHwiSang\u003c/code\u003e\u003c/a\u003e for identifying this as vulnerability.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed5fd4fe: Use task runner for logging use of deprecated (already no-op) functions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.31.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea44184f: Resolve NPM publish steps\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.30.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ebc77774: Correctly identify current branch name when using \u003ccode\u003egit.status\u003c/code\u003e in a cloned empty repo.\u003c/p\u003e\n\u003cp\u003ePreviously \u003ccode\u003egit.status\u003c/code\u003e would report the current branch name as \u003ccode\u003eNo\u003c/code\u003e. Thank you to \u003ca href=\"https://github.com/MaddyGuthridge\"\u003e\u003ccode\u003e@​MaddyGuthridge\u003c/code\u003e\u003c/a\u003e for identifying this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.28.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2adf47d: Allow repeating git options like \u003ccode\u003e{'--opt': ['value1', 'value2']}\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esimple-git@3.27.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/steveukx/git-js/blob/main/simple-git/CHANGELOG.md\"\u003esimple-git's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.32.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ef704208: Enhanced \u003ccode\u003eprotocol.allow\u003c/code\u003e checks in \u003ccode\u003eallowUnsafeExtProtocol\u003c/code\u003e handling.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/CodeAnt-AI-Security\"\u003e\u003ccode\u003e@​CodeAnt-AI-Security\u003c/code\u003e\u003c/a\u003e for identifying the issue\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8d02097: Enhanced clone unsafe switch detection.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e23b070f: Fix regex for detecting unsafe clone options\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/stevenwdv\"\u003e\u003ccode\u003e@​stevenwdv\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.32.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e1effd8e: Enhances the \u003ccode\u003eunsafe\u003c/code\u003e plugin to block additional cases where the \u003ccode\u003e-u\u003c/code\u003e switch may be disguised\nalong with other single character options.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/JuHwiSang\"\u003e\u003ccode\u003e@​JuHwiSang\u003c/code\u003e\u003c/a\u003e for identifying this as vulnerability.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed5fd4fe: Use task runner for logging use of deprecated (already no-op) functions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.31.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ea44184f: Resolve NPM publish steps\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.31.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e22dc93f: Custom binary plugin should support the use of \u003ccode\u003e~\u003c/code\u003e character, used by Windows to shorten long folder names\nand folder names that have spaces in them (eg: \u003ccode\u003eC:\\Program Files\u003c/code\u003e might become \u003ccode\u003eC:\\PROGRA~1\u003c/code\u003e).\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/skyshineb\"\u003e\u003ccode\u003e@​skyshineb\u003c/code\u003e\u003c/a\u003e for reporting this issue.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/a1170e506eeeaade4a242bfbf6d0620d57872364\"\u003e\u003ccode\u003ea1170e5\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/f7042088aa2dac59e3c49a84d7a2f4b26048a257\"\u003e\u003ccode\u003ef704208\u003c/code\u003e\u003c/a\u003e In extension to CVE-2022-25912, switch to case-insensitive check for `protoco...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/4bb20811eb35c0fa5437553cad4eb8ebf8f6f6e6\"\u003e\u003ccode\u003e4bb2081\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/7ae7537737bafc1e6559a28816785b10926fb095\"\u003e\u003ccode\u003e7ae7537\u003c/code\u003e\u003c/a\u003e Match tokens to word boundary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/c47ad103b07ce768cf69aec63e0c9f7f77a1ab0f\"\u003e\u003ccode\u003ec47ad10\u003c/code\u003e\u003c/a\u003e Lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/8d02097b726c2bc5360b4f55ee3ecb7e09648e4d\"\u003e\u003ccode\u003e8d02097\u003c/code\u003e\u003c/a\u003e Enhanced clone switch detection\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/f6909a52807512cb4e29a654db2dcd409b019113\"\u003e\u003ccode\u003ef6909a5\u003c/code\u003e\u003c/a\u003e Remove test timeout override\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/77406267ceb19aa901495b6ae414020daf789ebf\"\u003e\u003ccode\u003e7740626\u003c/code\u003e\u003c/a\u003e Update plugin.unsafe.spec.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/b562a6c4c1a226d9c7789b72c76784f334c1efac\"\u003e\u003ccode\u003eb562a6c\u003c/code\u003e\u003c/a\u003e Version Packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/steveukx/git-js/commit/23b070f0a4d320af5e745a42ae6176a629409566\"\u003e\u003ccode\u003e23b070f\u003c/code\u003e\u003c/a\u003e Fix regex for CLONE_OPTIONS constant (\u003ca href=\"https://github.com/steveukx/git-js/tree/HEAD/simple-git/issues/1122\"\u003e#1122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/steveukx/git-js/commits/simple-git@3.32.3/simple-git\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for simple-git since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `base-x` from 3.0.9 to 3.0.11\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/043a888a9bae09bc4b40500e37792e2c6398e9f2\"\u003e\u003ccode\u003e043a888\u003c/code\u003e\u003c/a\u003e 3.0.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/2705dddd2565b455641985974b534291d8defb31\"\u003e\u003ccode\u003e2705ddd\u003c/code\u003e\u003c/a\u003e [backport 3.x] Prohibit char codes that would overflow the \u003ccode\u003eBASE_MAP\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/3d43c0e16bfbc045a0a8bb6423e6e336df81b512\"\u003e\u003ccode\u003e3d43c0e\u003c/code\u003e\u003c/a\u003e 3.0.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/0a3544695fa6800649a8b78ed46cece61bcdbbe5\"\u003e\u003ccode\u003e0a35446\u003c/code\u003e\u003c/a\u003e Improve decoding performance\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/cryptocoinjs/base-x/compare/v3.0.9...v3.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cipher-base` from 1.0.4 to 1.0.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/browserify/cipher-base/blob/master/CHANGELOG.md\"\u003ecipher-base's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.6...v1.0.7\"\u003ev1.0.7\u003c/a\u003e - 2025-09-24\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003eto-buffer\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/fd1e5eeafccbc8eaa827ee6b9b60c14608aa784f\"\u003e\u003ccode\u003efd1e5ee\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/08ba8034223a53d300b7dccf33d8f14e52379a34\"\u003e\u003ccode\u003e08ba803\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.5...v1.0.6\"\u003ev1.0.6\u003c/a\u003e - 2024-11-26\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] io.js 3.0 - Node.js 5.3 typed array support \u003ca href=\"https://github.com/browserify/cipher-base/commit/b7ddd2ac24e65cc47befc1e0eb5026422f8ab037\"\u003e\u003ccode\u003eb7ddd2a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.4...v1.0.5\"\u003ev1.0.5\u003c/a\u003e - 2024-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] standard -\u0026gt; eslint, make test dir, etc \u003ca href=\"https://github.com/browserify/cipher-base/commit/ae02fd6624c41ac4ac18077be797111d1955bc76\"\u003e\u003ccode\u003eae02fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] migrate from travis to GHA \u003ca href=\"https://github.com/browserify/cipher-base/commit/66387d71461287ad9067bb1bcbfdc47403a33ee7\"\u003e\u003ccode\u003e66387d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix package.json indentation \u003ca href=\"https://github.com/browserify/cipher-base/commit/5c02918ac58c875ed36913c2dc3e1043f4d1c99c\"\u003e\u003ccode\u003e5c02918\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] return valid values on multi-byte-wide TypedArray input \u003ca href=\"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294\"\u003e\u003ccode\u003e8fd1364\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/88dc806806d3dc41444dbf639c87c00f82c949b3\"\u003e\u003ccode\u003e88dc806\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003enpmignore\u003c/code\u003e and \u003ccode\u003esafe-publish-latest\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/7a137d749ce7ea7ea56b9c096844b1b8ab723f61\"\u003e\u003ccode\u003e7a137d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly apps should have lockfiles \u003ca href=\"https://github.com/browserify/cipher-base/commit/42528f291db16bf2e7d5f831ebe2ad87fd0b1f42\"\u003e\u003ccode\u003e42528f2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003einherits\u003c/code\u003e, \u003ccode\u003esafe-buffer\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/0e7a2d9a33a391e82fa9cf512d6e25cc91ab8613\"\u003e\u003ccode\u003e0e7a2d9\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add missing \u003ccode\u003eengines.node\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/f2dc13e47bbcf3c873db9a9e0f83e5f29d0783fe\"\u003e\u003ccode\u003ef2dc13e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/00567180c846dd3db3848c9223991c58a0d5490c\"\u003e\u003ccode\u003e0056718\u003c/code\u003e\u003c/a\u003e v1.0.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/fd1e5eeafccbc8eaa827ee6b9b60c14608aa784f\"\u003e\u003ccode\u003efd1e5ee\u003c/code\u003e\u003c/a\u003e [Refactor] use \u003ccode\u003eto-buffer\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/08ba8034223a53d300b7dccf33d8f14e52379a34\"\u003e\u003ccode\u003e08ba803\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/f5249f94611506ef35a8be4d48a3fc5ecf1fac63\"\u003e\u003ccode\u003ef5249f9\u003c/code\u003e\u003c/a\u003e v1.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/b7ddd2ac24e65cc47befc1e0eb5026422f8ab037\"\u003e\u003ccode\u003eb7ddd2a\u003c/code\u003e\u003c/a\u003e [Fix] io.js 3.0 - Node.js 5.3 typed array support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/f03cebfdad1cba1d56614c58affa303b0fa2a43e\"\u003e\u003ccode\u003ef03cebf\u003c/code\u003e\u003c/a\u003e v1.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/88dc806806d3dc41444dbf639c87c00f82c949b3\"\u003e\u003ccode\u003e88dc806\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/7a137d749ce7ea7ea56b9c096844b1b8ab723f61\"\u003e\u003ccode\u003e7a137d7\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003enpmignore\u003c/code\u003e and \u003ccode\u003esafe-publish-latest\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/5c02918ac58c875ed36913c2dc3e1043f4d1c99c\"\u003e\u003ccode\u003e5c02918\u003c/code\u003e\u003c/a\u003e [meta] fix package.json indentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294\"\u003e\u003ccode\u003e8fd1364\u003c/code\u003e\u003c/a\u003e [Fix] return valid values on multi-byte-wide TypedArray input\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/crypto-browserify/cipher-base/compare/v1.0.4...v1.0.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for cipher-base since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dottie` from 2.0.6 to 2.0.7\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mickhansen/dottie.js/commit/334c32b80ed536522b567ee6a844caf8e5fef9c3\"\u003e\u003ccode\u003e334c32b\u003c/code\u003e\u003c/a\u003e 2.0.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mickhansen/dottie.js/commit/7e8fa1345a4b46325f0eab8d7aeb1c4deaefdb14\"\u003e\u003ccode\u003e7e8fa13\u003c/code\u003e\u003c/a\u003e fix: check all path segments for dangerous keys (bypass of CVE-2023-2… (\u003ca href=\"https://redirect.github.com/mickhansen/dottie.js/issues/43\"\u003e#43\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mickhansen/dottie.js/commit/a72eb993212939d60a2801843ce3e968dfc5c6a6\"\u003e\u003ccode\u003ea72eb99\u003c/code\u003e\u003c/a\u003e Update test GitHub Action (\u003ca href=\"https://redirect.github.com/mickhansen/dottie.js/issues/40\"\u003e#40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mickhansen/dottie.js/compare/v2.0.6...v2.0.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 4.0.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.4...v4.0.5\"\u003ev4.0.5\u003c/a\u003e - 2025-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] Switch to newer v8 prediction library; enable node 24 testing \u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c908563...\n\n_Description has been truncated_","html_url":"https://github.com/trizist/helium-program-library/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/trizist%2Fhelium-program-library/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"}},{"old_version":"2.1.2","new_version":"3.5.4","update_type":"major","path":null,"pr_created_at":"2026-03-02T23:01:45.000Z","version_change":"2.1.2 → 3.5.4","issue":{"uuid":"4013764644","node_id":"PR_kwDONbXe7s7Hdftt","number":2,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 1 directory with 8 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-14T00:47:23.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-02T23:01:45.000Z","updated_at":"2026-03-14T00:47:25.000Z","time_to_close":956738,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":8,"packages":[{"name":"mongoose","old_version":"8.8.0","new_version":"8.23.0"},{"name":"diff","old_version":"5.2.0","new_version":"7.0.0"},{"name":"form-data","old_version":"4.0.0","new_version":"4.0.4"},{"name":"formidable","old_version":"2.1.2","new_version":"3.5.4"},{"name":"js-yaml","old_version":"4.1.0","new_version":"4.1.1","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"nth-check","old_version":"1.0.2","new_version":"2.1.1"},{"name":"path-to-regexp","old_version":"0.1.10","new_version":"8.3.0"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 2 updates in the / directory: [js-yaml](https://github.com/nodeca/js-yaml) and @isaacs/brace-expansion.\n\nUpdates `mongoose` from 8.8.0 to 8.23.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Automattic/mongoose/releases\"\u003emongoose's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e8.23.0 / 2026-02-09\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efeat(document): add flattenUUIDs option to toObject() and toJSON() (backport \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15021\"\u003e#15021\u003c/a\u003e to 8.x)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.22.1 / 2025-02-04\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle other top-level query operators in sanitizeFilter\u003c/li\u003e\n\u003cli\u003efix(document): when cloning a doc with subdocs, make sure the subdocs parent is the cloned doc \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15904\"\u003e#15904\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15901\"\u003e#15901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(models): support Mongoose query casting in AnyBulkWriteOperation filter property \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15910\"\u003e#15910\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add toBSON() to documents \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15927\"\u003e#15927\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.22.0 / 2026-01-27\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efeat(model): allow passing strict option to hydrate() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15944\"\u003e#15944\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15940\"\u003e#15940\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e8.21.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(clone): fix parent doc for map subdocuments and array subdocuments \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15958\"\u003e#15958\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(document): when cloning a doc with subdocs, make sure the subdocs parent is the cloned doc \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15904\"\u003e#15904\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15901\"\u003e#15901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: respect currentTime schema option in bulkWrite updates \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15976\"\u003e#15976\u003c/a\u003e \u003ca href=\"https://github.com/sderrow\"\u003esderrow\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(models): support Mongoose query casting in AnyBulkWriteOperation filter property \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15910\"\u003e#15910\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add toBSON() to documents \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15927\"\u003e#15927\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.21.0 / 2025-12-29\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efeat(document): add support for getAtomics() to allow custom container types to utilize atomics \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15817\"\u003e#15817\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(document+model): pass options to pre('deleteOne') and update+options to pre('updateOne') hooks \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15908\"\u003e#15908\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15870\"\u003e#15870\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add support for typescript style enums \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15914\"\u003e#15914\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15913\"\u003e#15913\u003c/a\u003e \u003ca href=\"https://github.com/mjfwebb\"\u003emjfwebb\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.20.4 / 2025-12-18\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(model): ensure $isDeleted is set after calling doc.deleteOne() successfully \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15898\"\u003e#15898\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(document): use bitwise OR to accumulate version mode flags \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15893\"\u003e#15893\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15888\"\u003e#15888\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.20.3 / 2025-12-15\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eperf: use Object.hasOwn instead of Object#hasOwnProperty \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15875\"\u003e#15875\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: improve error when calling Document.prototype.init() with null/undefined \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15812\"\u003e#15812\u003c/a\u003e \u003ca href=\"https://github.com/Vegapunk-debug\"\u003eVegapunk-debug\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(schema): avoid treating paths with default: null as required \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15889\"\u003e#15889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(schema): allow partial statics to schema.statics() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15780\"\u003e#15780\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.20.2 / 2025-12-05\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(model): bump version if necessary after successful bulkSave() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15809\"\u003e#15809\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15800\"\u003e#15800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(bulkWrite): pass overwriteImmutable option to castUpdate fixes \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15789\"\u003e#15789\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15782\"\u003e#15782\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15781\"\u003e#15781\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(schema): allow calling schema.static() with as TStatics \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15794\"\u003e#15794\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15780\"\u003e#15780\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.20.1 / 2025-11-20\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003etypes: correct Model.schema type and fix unknown check for this param type in schema.methods \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15750\"\u003e#15750\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15693\"\u003e#15693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add detailed loadClass() TypeScript usage guide \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15731\"\u003e#15731\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/12813\"\u003e#12813\u003c/a\u003e \u003ca href=\"https://github.com/Necro-Rohan\"\u003eNecro-Rohan\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Automattic/mongoose/blob/master/CHANGELOG.md\"\u003emongoose's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e8.23.0 / 2026-02-09\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efeat(document): add flattenUUIDs option to toObject() and toJSON() (backport \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15021\"\u003e#15021\u003c/a\u003e to 8.x)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e9.1.6 / 2026-02-04\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle other top-level query operators in sanitizeFilter\u003c/li\u003e\n\u003cli\u003efix(types): fix toObject() type inference with timestamps + virtuals \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15975\"\u003e#15975\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15965\"\u003e#15965\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(populate): defer subpopulate until after match functions to avoid comparing populated subdocs \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15981\"\u003e#15981\u003c/a\u003e \u003ca href=\"https://redirect.github.com/mongodb-js/mongoose-autopopulate/issues/112\"\u003emongodb-js/mongoose-autopopulate#112\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(DocumentArray): correctly clone subdocument when updating document array \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15978\"\u003e#15978\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15973\"\u003e#15973\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(documentArray): fix change tracking for documentArrays in nested maps \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15983\"\u003e#15983\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15970\"\u003e#15970\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: clarify that you need to explicitly create timeseries collection before inserting document \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15990\"\u003e#15990\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15986\"\u003e#15986\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.22.1 / 2026-02-04\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle other top-level query operators in sanitizeFilter\u003c/li\u003e\n\u003cli\u003efix(document): when cloning a doc with subdocs, make sure the subdocs parent is the cloned doc \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15904\"\u003e#15904\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15901\"\u003e#15901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(models): support Mongoose query casting in AnyBulkWriteOperation filter property \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15910\"\u003e#15910\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add toBSON() to documents \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15927\"\u003e#15927\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e7.8.9 / 2026-02-04\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: handle other top-level query operators in sanitizeFilter\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.22.0 / 2026-01-27\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efeat(model): allow passing strict option to hydrate() \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15944\"\u003e#15944\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15940\"\u003e#15940\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e8.21.1 / 2026-01-23\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(clone): fix parent doc for map subdocuments and array subdocuments \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15958\"\u003e#15958\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(document): when cloning a doc with subdocs, make sure the subdocs parent is the cloned doc \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15904\"\u003e#15904\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15901\"\u003e#15901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: respect currentTime schema option in bulkWrite updates \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15976\"\u003e#15976\u003c/a\u003e \u003ca href=\"https://github.com/sderrow\"\u003esderrow\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(models): support Mongoose query casting in AnyBulkWriteOperation filter property \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15910\"\u003e#15910\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes: add toBSON() to documents \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15927\"\u003e#15927\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e9.1.5 / 2026-01-20\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix(map): validate map subdocument when loaded with init \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15960\"\u003e#15960\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15957\"\u003e#15957\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(discriminator): prevent indexes and callQueue duplication with shared nested schemas \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15974\"\u003e#15974\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15966\"\u003e#15966\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(subdocuments): do not pass parent path on init \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15970\"\u003e#15970\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15969\"\u003e#15969\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15682\"\u003e#15682\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etypes(inferrawdoctype): correct handling for subdocs and doc arrays \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15967\"\u003e#15967\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/13772\"\u003e#13772\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: improve grammar and clarity in TypeScript schema comments \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15971\"\u003e#15971\u003c/a\u003e \u003ca href=\"https://github.com/harshsinghpujari\"\u003eharshsinghpujari\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e9.1.4 / 2026-01-15\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003efix: attach sessions to docs retrieved by cursor \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15953\"\u003e#15953\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15949\"\u003e#15949\u003c/a\u003e \u003ca href=\"https://github.com/mjfwalsh\"\u003emjfwalsh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(model): make hydrate() handle nested schema arrays \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15964\"\u003e#15964\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15956\"\u003e#15956\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(clone): fix parent doc for map subdocuments and array subdocuments \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15958\"\u003e#15958\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15954\"\u003e#15954\u003c/a\u003e \u003ca href=\"https://github.com/AbdelrahmanHafez\"\u003eAbdelrahmanHafez\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent crash when accessing nested paths on prototype \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15962\"\u003e#15962\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15961\"\u003e#15961\u003c/a\u003e \u003ca href=\"https://github.com/som14062005\"\u003esom14062005\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/06da34796ad8341e6c141d9198867a8adf87bb9b\"\u003e\u003ccode\u003e06da347\u003c/code\u003e\u003c/a\u003e chore: release 8.23.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/6f00472fbfccc926e1c75f941607f2601f5033b2\"\u003e\u003ccode\u003e6f00472\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Automattic/mongoose/issues/15993\"\u003e#15993\u003c/a\u003e from Automattic/8.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/fb9a4528d080c0a1a8f3f543a3f9847d57abafdb\"\u003e\u003ccode\u003efb9a452\u003c/code\u003e\u003c/a\u003e Update lib/document.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/0d0b0de092d4ce706ace35211573f6a8b365c4ef\"\u003e\u003ccode\u003e0d0b0de\u003c/code\u003e\u003c/a\u003e Update lib/document.js\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/1f0ae9932f07b30782ab863debfc32eb60485088\"\u003e\u003ccode\u003e1f0ae99\u003c/code\u003e\u003c/a\u003e Merge branch '7.x' into 8.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/ded2edb3aef3e9a1a5ffa634550c878af0601300\"\u003e\u003ccode\u003eded2edb\u003c/code\u003e\u003c/a\u003e docs: fix changelog year\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/a60200b2ce81cab4e879fe094a2da91b7ec31172\"\u003e\u003ccode\u003ea60200b\u003c/code\u003e\u003c/a\u003e docs: fix changelog date years\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/41fb971b28ba26a805ff4577502b25ffbaff4e14\"\u003e\u003ccode\u003e41fb971\u003c/code\u003e\u003c/a\u003e docs: add missing changelog entries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/472e7c7072e6696ead2cc06123b18a2068c1e04c\"\u003e\u003ccode\u003e472e7c7\u003c/code\u003e\u003c/a\u003e chore: release 8.22.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Automattic/mongoose/commit/17351494cd540ea60f24515f99e88506a95c5b8b\"\u003e\u003ccode\u003e1735149\u003c/code\u003e\u003c/a\u003e Merge branch '7.x' into 8.x\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Automattic/mongoose/compare/8.8.0...8.23.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for mongoose since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diff` from 5.2.0 to 7.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e7.0.0\u003c/h2\u003e\n\u003cp\u003eJust a single (breaking) bugfix, undoing a behaviour change introduced accidentally in 6.0.0:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/554\"\u003e#554\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003ediffWords\u003c/code\u003e treats numbers and underscores as word characters again.\u003c/strong\u003e This behaviour was broken in v6.0.0.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.0\u003c/h2\u003e\n\u003cp\u003eThis is a release containing many, \u003cem\u003emany\u003c/em\u003e breaking changes. The objective of this release was to carry out a mass fix, in one go, of all the open bugs and design problems that required breaking changes to fix. A substantial, but exhaustive, changelog is below.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...v6.0.0\"\u003eCommits\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/497\"\u003e#497\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003ediffWords\u003c/code\u003e behavior has been radically changed.\u003c/strong\u003e Previously, even with \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e, runs of whitespace were tokens, which led to unhelpful and unintuitive diffing behavior in typical texts. Specifically, even when two texts contained overlapping passages, \u003ccode\u003ediffWords\u003c/code\u003e would sometimes choose to delete all the words from the old text and insert them anew in their new positions in order to avoid having to delete or insert whitespace tokens. Whitespace sequences are no longer tokens as of this release, which affects both the generated diffs and the \u003ccode\u003ecount\u003c/code\u003es.\u003c/p\u003e\n\u003cp\u003eRuns of whitespace are still tokens in \u003ccode\u003ediffWordsWithSpace\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eAs part of the changes to \u003ccode\u003ediffWords\u003c/code\u003e, \u003cstrong\u003ea new \u003ccode\u003e.postProcess\u003c/code\u003e method has been added on the base \u003ccode\u003eDiff\u003c/code\u003e type\u003c/strong\u003e, which can be overridden in custom \u003ccode\u003eDiff\u003c/code\u003e implementations.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ccode\u003ediffLines\u003c/code\u003e with \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e will no longer ignore the insertion or deletion of entire extra lines of whitespace at the end of the text\u003c/strong\u003e. Previously, these would not show up as insertions or deletions, as a side effect of a hack in the base diffing algorithm meant to help ignore whitespace in \u003ccode\u003ediffWords\u003c/code\u003e. More generally, \u003cstrong\u003ethe undocumented special handling in the core algorithm for ignored terminals has been removed entirely.\u003c/strong\u003e (This special case behavior used to rewrite the final two change objects in a scenario where the final change object was an addition or deletion and its \u003ccode\u003evalue\u003c/code\u003e was treated as equal to the empty string when compared using the diff object's \u003ccode\u003e.equals\u003c/code\u003e method.)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/500\"\u003e#500\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003ediffChars\u003c/code\u003e now diffs Unicode code points\u003c/strong\u003e instead of UTF-16 code units.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/508\"\u003e#508\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003eparsePatch\u003c/code\u003e now always runs in what was previously \u0026quot;strict\u0026quot; mode; the undocumented \u003ccode\u003estrict\u003c/code\u003e option has been removed.\u003c/strong\u003e Previously, by default, \u003ccode\u003eparsePatch\u003c/code\u003e (and other patch functions that use it under the hood to parse patches) would accept a patch where the line counts in the headers were inconsistent with the actual patch content - e.g. where a hunk started with the header \u003ccode\u003e@@ -1,3 +1,6 @@\u003c/code\u003e, indicating that the content below spanned 3 lines in the old file and 6 lines in the new file, but then the actual content below the header consisted of some different number of lines, say 10 lines of context, 5 deletions, and 1 insertion. Actually trying to work with these patches using \u003ccode\u003eapplyPatch\u003c/code\u003e or \u003ccode\u003emerge\u003c/code\u003e, however, would produce incorrect results instead of just ignoring the incorrect headers, making this \u0026quot;feature\u0026quot; more of a trap than something actually useful. It's been ripped out, and now we are always \u0026quot;strict\u0026quot; and will reject patches where the line counts in the headers aren't consistent with the actual patch content.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/435\"\u003e#435\u003c/a\u003e \u003cstrong\u003eFix \u003ccode\u003eparsePatch\u003c/code\u003e handling of control characters.\u003c/strong\u003e \u003ccode\u003eparsePatch\u003c/code\u003e used to interpret various unusual control characters - namely vertical tabs, form feeds, lone carriage returns without a line feed, and EBCDIC NELs - as line breaks when parsing a patch file. This was inconsistent with the behavior of both JsDiff's own \u003ccode\u003ediffLines\u003c/code\u003e method and also the Unix \u003ccode\u003ediff\u003c/code\u003e and \u003ccode\u003epatch\u003c/code\u003e utils, which all simply treat those control characters as ordinary characters. The result of this discrepancy was that some well-formed patches - produced either by \u003ccode\u003ediff\u003c/code\u003e or by JsDiff itself and handled properly by the \u003ccode\u003epatch\u003c/code\u003e util - would be wrongly parsed by \u003ccode\u003eparsePatch\u003c/code\u003e, with the effect that it would disregard the remainder of a hunk after encountering one of these control characters.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/439\"\u003e#439\u003c/a\u003e \u003cstrong\u003ePrefer diffs that order deletions before insertions.\u003c/strong\u003e When faced with a choice between two diffs with an equal total edit distance, the Myers diff algorithm generally prefers one that does deletions before insertions rather than insertions before deletions. For instance, when diffing \u003ccode\u003eabcd\u003c/code\u003e against \u003ccode\u003eacbd\u003c/code\u003e, it will prefer a diff that says to delete the \u003ccode\u003eb\u003c/code\u003e and then insert a new \u003ccode\u003eb\u003c/code\u003e after the \u003ccode\u003ec\u003c/code\u003e, over a diff that says to insert a \u003ccode\u003ec\u003c/code\u003e before the \u003ccode\u003eb\u003c/code\u003e and then delete the existing \u003ccode\u003ec\u003c/code\u003e. JsDiff deviated from the published Myers algorithm in a way that led to it having the opposite preference in many cases, including that example. This is now fixed, meaning diffs output by JsDiff will more accurately reflect what the published Myers diff algorithm would output.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/455\"\u003e#455\u003c/a\u003e \u003cstrong\u003eThe \u003ccode\u003eadded\u003c/code\u003e and \u003ccode\u003eremoved\u003c/code\u003e properties of change objects are now guaranteed to be set to a boolean value.\u003c/strong\u003e (Previously, they would be set to \u003ccode\u003eundefined\u003c/code\u003e or omitted entirely instead of setting them to false.)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/464\"\u003e#464\u003c/a\u003e Specifying \u003ccode\u003e{maxEditLength: 0}\u003c/code\u003e now sets a max edit length of 0 instead of no maximum.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/460\"\u003e#460\u003c/a\u003e \u003cstrong\u003eAdded \u003ccode\u003eoneChangePerToken\u003c/code\u003e option.\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/467\"\u003e#467\u003c/a\u003e \u003cstrong\u003eConsistent ordering of arguments to \u003ccode\u003ecomparator(left, right)\u003c/code\u003e.\u003c/strong\u003e Values from the old array will now consistently be passed as the first argument (\u003ccode\u003eleft\u003c/code\u003e) and values from the new array as the second argument (\u003ccode\u003eright\u003c/code\u003e). Previously this was almost (but not quite) always the other way round.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/480\"\u003e#480\u003c/a\u003e \u003cstrong\u003ePassing \u003ccode\u003emaxEditLength\u003c/code\u003e to \u003ccode\u003ecreatePatch\u003c/code\u003e \u0026amp; \u003ccode\u003ecreateTwoFilesPatch\u003c/code\u003e now works properly\u003c/strong\u003e (i.e. returns undefined if the max edit distance is exceeded; previous behavior was to crash with a \u003ccode\u003eTypeError\u003c/code\u003e if the edit distance was exceeded).\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/486\"\u003e#486\u003c/a\u003e \u003cstrong\u003eThe \u003ccode\u003eignoreWhitespace\u003c/code\u003e option of \u003ccode\u003ediffLines\u003c/code\u003e behaves more sensibly now.\u003c/strong\u003e \u003ccode\u003evalue\u003c/code\u003es in returned change objects now include leading/trailing whitespace even when \u003ccode\u003eignoreWhitespace\u003c/code\u003e is used, just like how with \u003ccode\u003eignoreCase\u003c/code\u003e the \u003ccode\u003evalue\u003c/code\u003es still reflect the case of one of the original texts instead of being all-lowercase. \u003ccode\u003eignoreWhitespace\u003c/code\u003e is also now compatible with \u003ccode\u003enewlineIsToken\u003c/code\u003e. Finally, \u003cstrong\u003e\u003ccode\u003ediffTrimmedLines\u003c/code\u003e is deprecated\u003c/strong\u003e (and removed from the docs) in favour of using \u003ccode\u003ediffLines\u003c/code\u003e with \u003ccode\u003eignoreWhitespace: true\u003c/code\u003e; the two are, and always have been, equivalent.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/490\"\u003e#490\u003c/a\u003e \u003cstrong\u003eWhen calling diffing functions in async mode by passing a \u003ccode\u003ecallback\u003c/code\u003e option, the diff result will now be passed as the \u003cem\u003efirst\u003c/em\u003e argument to the callback instead of the second.\u003c/strong\u003e (Previously, the first argument was never used at all and would always have value \u003ccode\u003eundefined\u003c/code\u003e.)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/489\"\u003e#489\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003ethis.options\u003c/code\u003e no longer exists on \u003ccode\u003eDiff\u003c/code\u003e objects.\u003c/strong\u003e Instead, \u003ccode\u003eoptions\u003c/code\u003e is now passed as an argument to methods that rely on options, like \u003ccode\u003eequals(left, right, options)\u003c/code\u003e. This fixes a race condition in async mode, where diffing behaviour could be changed mid-execution if a concurrent usage of the same \u003ccode\u003eDiff\u003c/code\u003e instances overwrote its \u003ccode\u003eoptions\u003c/code\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/518\"\u003e#518\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003elinedelimiters\u003c/code\u003e no longer exists\u003c/strong\u003e on patch objects; instead, when a patch with Windows-style CRLF line endings is parsed, \u003cstrong\u003ethe lines in \u003ccode\u003elines\u003c/code\u003e will end with \u003ccode\u003e\\r\u003c/code\u003e\u003c/strong\u003e. There is now a \u003cstrong\u003enew \u003ccode\u003eautoConvertLineEndings\u003c/code\u003e option, on by default\u003c/strong\u003e, which makes it so that when a patch with Windows-style line endings is applied to a source file with Unix style line endings, the patch gets autoconverted to use Unix-style line endings, and when a patch with Unix-style line endings is applied to a source file with Windows-style line endings, it gets autoconverted to use Windows-style line endings.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/521\"\u003e#521\u003c/a\u003e \u003cstrong\u003ethe \u003ccode\u003ecallback\u003c/code\u003e option is now supported by \u003ccode\u003estructuredPatch\u003c/code\u003e, \u003ccode\u003ecreatePatch\u003c/code\u003e, and \u003ccode\u003ecreateTwoFilesPatch\u003c/code\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/529\"\u003e#529\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003eparsePatch\u003c/code\u003e can now parse patches where lines starting with \u003ccode\u003e--\u003c/code\u003e or \u003ccode\u003e++\u003c/code\u003e are deleted/inserted\u003c/strong\u003e; previously, there were edge cases where the parser would choke on valid patches or give wrong results.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/530\"\u003e#530\u003c/a\u003e \u003cstrong\u003eAdded \u003ccode\u003eignoreNewlineAtEof\u003c/code\u003e option to \u003ccode\u003ediffLines\u003c/code\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/533\"\u003e#533\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003eapplyPatch\u003c/code\u003e uses an entirely new algorithm for fuzzy matching.\u003c/strong\u003e Differences between the old and new algorithm are as follows:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003efuzzFactor\u003c/code\u003e now indicates the maximum \u003ca href=\"https://en.wikipedia.org/wiki/Levenshtein_distance\"\u003e\u003cem\u003eLevenshtein\u003c/em\u003e distance\u003c/a\u003e that there can be between the context shown in a hunk and the actual file content at a location where we try to apply the hunk. (Previously, it represented a maximum \u003ca href=\"https://en.wikipedia.org/wiki/Hamming_distance\"\u003e\u003cem\u003eHamming\u003c/em\u003e distance\u003c/a\u003e, meaning that a single insertion or deletion in the source file could stop a hunk from applying even with a high \u003ccode\u003efuzzFactor\u003c/code\u003e.)\u003c/li\u003e\n\u003cli\u003eA hunk containing a deletion can now only be applied in a context where the line to be deleted actually appears verbatim. (Previously, as long as enough context lines in the hunk matched, \u003ccode\u003eapplyPatch\u003c/code\u003e would apply the hunk anyway and delete a completely different line.)\u003c/li\u003e\n\u003cli\u003eThe context line immediately before and immediately after an insertion must match exactly between the hunk and the file for a hunk to apply. (Previously this was not required.)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/535\"\u003e#535\u003c/a\u003e \u003cstrong\u003eA bug in patch generation functions is now fixed\u003c/strong\u003e that would sometimes previously cause \u003ccode\u003e\\ No newline at end of file\u003c/code\u003e to appear in the wrong place in the generated patch, resulting in the patch being invalid. \u003cstrong\u003eThese invalid patches can also no longer be applied successfully with \u003ccode\u003eapplyPatch\u003c/code\u003e.\u003c/strong\u003e (It was already the case that tools other than jsdiff, like GNU \u003ccode\u003epatch\u003c/code\u003e, would consider them malformed and refuse to apply them; versions of jsdiff with this fix now do the same thing if you ask them to apply a malformed patch emitted by jsdiff v5.)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/535\"\u003e#535\u003c/a\u003e \u003cstrong\u003ePassing \u003ccode\u003enewlineIsToken: true\u003c/code\u003e to \u003cem\u003epatch\u003c/em\u003e-generation functions is no longer allowed.\u003c/strong\u003e (Passing it to \u003ccode\u003ediffLines\u003c/code\u003e is still supported - it's only functions like \u003ccode\u003ecreatePatch\u003c/code\u003e where passing \u003ccode\u003enewlineIsToken\u003c/code\u003e is now an error.) Allowing it to be passed never really made sense, since in cases where the option had any effect on the output at all, the effect tended to be causing a garbled patch to be created that couldn't actually be applied to the source file.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/539\"\u003e#539\u003c/a\u003e \u003cstrong\u003e\u003ccode\u003ediffWords\u003c/code\u003e now takes an optional \u003ccode\u003eintlSegmenter\u003c/code\u003e option\u003c/strong\u003e which should be an \u003ccode\u003eIntl.Segmenter\u003c/code\u003e with word-level granularity. This provides better tokenization of text into words than the default behaviour, even for English but especially for some other languages for which the default behaviour is poor.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.2.2 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 5.2.0 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev5.2.1 (deprecated)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/ad8f0eb9f4cea9a4b6abdede878e7a3d0f555a73\"\u003e\u003ccode\u003ead8f0eb\u003c/code\u003e\u003c/a\u003e Prep for 7.0.0 release (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/556\"\u003e#556\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/7d113b61e6f43fbb89f7d1388eac339ebea9eeb5\"\u003e\u003ccode\u003e7d113b6\u003c/code\u003e\u003c/a\u003e Fix diffWords treating numbers and underscores as not being word characters (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/f9972d6993c268eb97530e6a4bc605303bcca77b\"\u003e\u003ccode\u003ef9972d6\u003c/code\u003e\u003c/a\u003e Fix links to commit lists in release-notes.md (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/555\"\u003e#555\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/68526b9b95fb2732c251ecadb46f228ee90281f3\"\u003e\u003ccode\u003e68526b9\u003c/code\u003e\u003c/a\u003e Update release-notes.md (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/552\"\u003e#552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/e80648d06dd3dd967622dc418bcad821b003ed4a\"\u003e\u003ccode\u003ee80648d\u003c/code\u003e\u003c/a\u003e Release V6.0.0 (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/551\"\u003e#551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/a8b639a64fed9f00954b7f3fea18b723a6283317\"\u003e\u003ccode\u003ea8b639a\u003c/code\u003e\u003c/a\u003e Remove use of regex lookbehind to improve compat with old Safari versions (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/550\"\u003e#550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/e8db85e3e9d8c4f05371c1299df2b1d83aa7653a\"\u003e\u003ccode\u003ee8db85e\u003c/code\u003e\u003c/a\u003e Bump micromatch from 4.0.5 to 4.0.8 (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/549\"\u003e#549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/6b5247d6075bdf633a9dbc5cedf82e882b2bd673\"\u003e\u003ccode\u003e6b5247d\u003c/code\u003e\u003c/a\u003e Bump webpack from 5.90.3 to 5.94.0 (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/548\"\u003e#548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/739bfff946e875b4eefe7df44f3fa9e7f756406b\"\u003e\u003ccode\u003e739bfff\u003c/code\u003e\u003c/a\u003e Fix reference to no-longer-existent 'rollup.config.js' file (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/544\"\u003e#544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/3b1ac533f16c26f99703cb3d6e1fae6982a2bc42\"\u003e\u003ccode\u003e3b1ac53\u003c/code\u003e\u003c/a\u003e 6.0.0-beta (\u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v5.2.0...7.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 4.0.0 to 4.0.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMerge tags v2.5.3 and v3.0.3 \u003ca href=\"https://github.com/form-data/form-data/commit/92613b9208556eb4ebc482fdf599fae111626fb6\"\u003e\u003ccode\u003e92613b9\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] migrate from travis to GHA \u003ca href=\"https://github.com/form-data/form-data/commit/806eda77740e6e3c67c7815afb216f2e1f187ba5\"\u003e\u003ccode\u003e806eda7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] migrate from travis to GHA \u003ca href=\"https://github.com/form-data/form-data/commit/8fdb3bc6b5d001f8909a9fca391d1d1d97ef1d79\"\u003e\u003ccode\u003e8fdb3bc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/41996f5ac73a867046d48512cab62e64fc846dad\"\u003e\u003ccode\u003e41996f5\u003c/code\u003e\u003c/a\u003e v4.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e [meta] actually ensure the readme backup isn’t published\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e [meta] fix readme capitalization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e [Tests] fix linting errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e [Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e [Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/d8d67dc8ac79285154edf7d3f57dbab593b9a146\"\u003e\u003ccode\u003ed8d67dc\u003c/code\u003e\u003c/a\u003e v4.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e [meta] remove local commit hooks\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.0...v4.0.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for form-data since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 3.5.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-formidable/formidable/releases\"\u003eformidable's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix existing test failure by \u003ca href=\"https://github.com/ryhmrt\"\u003e\u003ccode\u003e@​ryhmrt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/990\"\u003enode-formidable/formidable#990\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate Ryan Dahl x account link by \u003ca href=\"https://github.com/moetezch\"\u003e\u003ccode\u003e@​moetezch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/989\"\u003enode-formidable/formidable#989\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate failing tests\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate CI/CD workflows and actions;\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate CodeQL github action for security analysis\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate readme, links and badges\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate to use cuid2 (battle-tested \u003ccode\u003e@paralleldrive/cuid2\u003c/code\u003e package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ryhmrt\"\u003e\u003ccode\u003e@​ryhmrt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/990\"\u003enode-formidable/formidable#990\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moetezch\"\u003e\u003ccode\u003e@​moetezch\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/989\"\u003enode-formidable/formidable#989\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3\"\u003ehttps://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.2\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev3.2.5\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003e3.2.4\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003e3.1.4\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\"\u003ehttps://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\"\u003eformidable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e3.5.4\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix the \u003ccode\u003eos.machine\u003c/code\u003e breaking some dependents, fix \u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/994\"\u003e#994\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd Node 16, 18, 20, 22 to CI/CD\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.3\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esecurity report by ZAST.AI help for some vulnerabilities addressing (primarily the random names generation)\u003c/li\u003e\n\u003cli\u003eupdate failing tests\u003c/li\u003e\n\u003cli\u003eupdate CI/CD workflows and actions;\u003c/li\u003e\n\u003cli\u003eupdate CodeQL github action for security analysis\u003c/li\u003e\n\u003cli\u003eupdate readme, links and badges\u003c/li\u003e\n\u003cli\u003eupdate to use cuid2 (battle-tested \u003ccode\u003e@paralleldrive/cuid2\u003c/code\u003e package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.2\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/982\"\u003e#982\u003c/a\u003e) make it easier to import hexoid with webpack\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.1\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/945\"\u003e#945\u003c/a\u003e) multipart parser fix: flush or fail always (don't hang)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.0\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeature: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/944\"\u003e#944\u003c/a\u003e) Dual package: Can be imported as ES module and required as commonjs module\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.4.0\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeature: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/940\"\u003e#940\u003c/a\u003e) form.parse returns a promise if no callback is provided\u003c/li\u003e\n\u003cli\u003eit resolves with an array \u003ccode\u003e[fields, files]\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.3.2\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeature: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/855\"\u003e#855\u003c/a\u003e) add options.createDirsFromUploads, see README for usage\u003c/li\u003e\n\u003cli\u003eform.parse is an async function (ignore the promise)\u003c/li\u003e\n\u003cli\u003ebenchmarks: add e2e becnhmark with as many request as possible per second\n\u003cul\u003e\n\u003cli\u003enpm run to display all the commands\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003emark as latest on npm\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.2.5\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/881\"\u003e#881\u003c/a\u003e) fail earlier when maxFiles is exceeded\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.2.4\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/857\"\u003e#857\u003c/a\u003e) improve keep extension\u003c/li\u003e\n\u003cli\u003eThe code from before 3.2.4 already removed some characters from the file extension. But not always. So it was inconsistent.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 4.1.0 to 4.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/cc482e775913e6625137572a3712d2826170e53a\"\u003e\u003ccode\u003ecc482e7\u003c/code\u003e\u003c/a\u003e 4.1.1 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/50968b862e75866ef90e626572fe0b2f97b55f9f\"\u003e\u003ccode\u003e50968b8\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/d092d866031751cb27c12d93f3e2470ad74d678b\"\u003e\u003ccode\u003ed092d86\u003c/code\u003e\u003c/a\u003e lint fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879\"\u003e\u003ccode\u003e383665f\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/0d3ca7a27b03a6c974790a30a89e456007d62976\"\u003e\u003ccode\u003e0d3ca7a\u003c/code\u003e\u003c/a\u003e README.md: HTTP =\u0026gt; HTTPS (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/49baadd52af887d2991e2c39a6639baa56d6c71b\"\u003e\u003ccode\u003e49baadd\u003c/code\u003e\u003c/a\u003e doc: 'empty' style option for !!null\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/ba3460eb9d3e4478edcbc29edabe17c2157fc9ce\"\u003e\u003ccode\u003eba3460e\u003c/code\u003e\u003c/a\u003e Fix demo link (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nth-check` from 1.0.2 to 2.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fb55/nth-check/releases\"\u003enth-check's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe ESM code had some issues that are now fixed  aeeb067\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/fb55/nth-check/compare/v2.1.0...v2.1.1\"\u003ehttps://github.com/fb55/nth-check/compare/v2.1.0...v2.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003enth-check\u003c/code\u003e is now a dual CommonJS and ESM module \u003ca href=\"https://redirect.github.com/fb55/nth-check/pull/206\"\u003efb55/nth-check#206\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWith the new  \u003ccode\u003esequence\u003c/code\u003e and \u003ccode\u003egenerate\u003c/code\u003e methods, it is now possible to generate a sequence of indices for a given formula \u003ca href=\"https://redirect.github.com/fb55/nth-check/pull/207\"\u003efb55/nth-check#207\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fb55/nth-check/compare/v2.0.1...v2.1.0\"\u003ehttps://github.com/fb55/nth-check/compare/v2.0.1...v2.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.0.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eReplace regex with hand-rolled parser for nth-expressions (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/9\"\u003e#9\u003c/a\u003e)  9894c1d\n\u003cul\u003e\n\u003cli\u003eEnsures parsing will always have linear time complexity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eInternal:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003echore(ci): Use GitHub Actions, Dependabot (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/10\"\u003e#10\u003c/a\u003e)  e02b4dd\u003c/li\u003e\n\u003cli\u003eBump dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/fb55/nth-check/compare/v2.0.0...v2.0.1\"\u003ehttps://github.com/fb55/nth-check/compare/v2.0.0...v2.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort module to TS, Jest, ESLint\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe main export is now a default export.\u003c/li\u003e\n\u003cli\u003eThe module now throws regular \u003ccode\u003eError\u003c/code\u003es on invalid selectors instead of \u003ccode\u003eSyntaxError\u003c/code\u003es.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/639fd2a4000b69f82350aad8c34cb43f77e483ba\"\u003e\u003ccode\u003e639fd2a\u003c/code\u003e\u003c/a\u003e 2.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/0eec65bb14c0f49deb4d5ea05108575edbe4b489\"\u003e\u003ccode\u003e0eec65b\u003c/code\u003e\u003c/a\u003e fix(test): Add \u003ccode\u003emoduleNameMapper\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/aeeb0676f6af940e8639f64e27781443694ca05e\"\u003e\u003ccode\u003eaeeb067\u003c/code\u003e\u003c/a\u003e fix: Fix ESM\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/432ebc605de10e2f26d7cc2a1fc3fcb048eea6e6\"\u003e\u003ccode\u003e432ebc6\u003c/code\u003e\u003c/a\u003e 2.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/3e8cd1ea382c14a0a51aa4b67b00024f1c4acb68\"\u003e\u003ccode\u003e3e8cd1e\u003c/code\u003e\u003c/a\u003e feat: Add \u003ccode\u003egenerate\u003c/code\u003e and \u003ccode\u003esequence\u003c/code\u003e methods (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/207\"\u003e#207\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/57a5c6246d3ce56717a07ff7c86bd31d2d9ca5a0\"\u003e\u003ccode\u003e57a5c62\u003c/code\u003e\u003c/a\u003e feat: Add ESM (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/206\"\u003e#206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/1ce0c7c9281aac4869bfa26c451854d5c0557618\"\u003e\u003ccode\u003e1ce0c7c\u003c/code\u003e\u003c/a\u003e chore(deps-dev): Bump \u003ccode\u003e@​types/node\u003c/code\u003e from 17.0.34 to 17.0.35 (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/205\"\u003e#205\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/eebb040a8104ce61f24f3cbd0ec8ceffd5b82879\"\u003e\u003ccode\u003eeebb040\u003c/code\u003e\u003c/a\u003e chore(deps-dev): Bump \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 5.24.0 to 5.25.0 (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/204\"\u003e#204\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/a316aaab13f7992dbf0d8bbe778dcaa634b4b584\"\u003e\u003ccode\u003ea316aaa\u003c/code\u003e\u003c/a\u003e chore(deps-dev): Bump \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/203\"\u003e#203\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fb55/nth-check/commit/454c0de7b9be154957247f857192810ae566d4bb\"\u003e\u003ccode\u003e454c0de\u003c/code\u003e\u003c/a\u003e chore(deps-dev): Bump \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/fb55/nth-check/issues/202\"\u003e#202\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fb55/nth-check/compare/v1.0.2...v2.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `path-to-regexp` from 0.1.10 to 8.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/pillarjs/path-to-regexp/releases\"\u003epath-to-regexp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e8.3.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd custom error class (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/398\"\u003e#398\u003c/a\u003e)  2a7f2a4\u003c/li\u003e\n\u003cli\u003eAllow plain objects for \u003ccode\u003eTokenData\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/391\"\u003e#391\u003c/a\u003e)  687a9bb\u003c/li\u003e\n\u003cli\u003eEscape text should escape backslash (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/390\"\u003e#390\u003c/a\u003e)  a4a8552\u003c/li\u003e\n\u003cli\u003eImproved error messages and stack size (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/363\"\u003e#363\u003c/a\u003e)  a6bdf40\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eOther\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eMinifying the parser\n\u003cul\u003e\n\u003cli\u003ePR (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/401\"\u003e#401\u003c/a\u003e)  9df2448\u003c/li\u003e\n\u003cli\u003ePR (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/395\"\u003e#395\u003c/a\u003e)  4a91505\u003c/li\u003e\n\u003cli\u003eShaving some bytes  d63f44b\u003c/li\u003e\n\u003cli\u003eRemove optional operator  973d15c\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/compare/v8.2.0...v8.3.0\"\u003ehttps://github.com/pillarjs/path-to-regexp/compare/v8.2.0...v8.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e8.2.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAllowing \u003ccode\u003epath-to-regexp\u003c/code\u003e to run on older browsers by targeting ES2015\n\u003cul\u003e\n\u003cli\u003eTarget ES2015  5969033\n\u003cul\u003e\n\u003cli\u003eAlso saved \u003cem\u003e0.22kb\u003c/em\u003e (10%!) by removing the private class field down level\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003es\u003c/code\u003e flag from regexp  51dbd45\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/compare/v8.1.0...v8.2.0\"\u003ehttps://github.com/pillarjs/path-to-regexp/compare/v8.1.0...v8.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev8.1.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eAdded\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdds \u003ccode\u003epathToRegexp\u003c/code\u003e method back for generating a regex\u003c/li\u003e\n\u003cli\u003eAdds \u003ccode\u003estringify\u003c/code\u003e method for converting \u003ccode\u003eTokenData\u003c/code\u003e into a path string\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/compare/v8.0.0...v8.1.0\"\u003ehttps://github.com/pillarjs/path-to-regexp/compare/v8.0.0...v8.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eSimpler API\u003c/h2\u003e\n\u003cp\u003eHeads up! This is a fairly large change (again) and I need to apologize in advance. If I foresaw what this version would have ended up being I would not have released version 7. A longer blog post and explanation will be incoming this week, but the pivot has been due to work on Express.js v5 and this will the finalized syntax used in Express moving forward.\u003c/p\u003e\n\u003cp\u003eEdit: The post is out - \u003ca href=\"https://blakeembrey.com/posts/2024-09-web-redos/\"\u003ehttps://blakeembrey.com/posts/2024-09-web-redos/\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eAdded\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdds key names to wildcards using \u003ccode\u003e*name\u003c/code\u003e syntax, aligns with \u003ccode\u003e:\u003c/code\u003e behavior but using an asterisk instead\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eChanged\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRemoves group suffixes of \u003ccode\u003e?\u003c/code\u003e, \u003ccode\u003e+\u003c/code\u003e, and \u003ccode\u003e*\u003c/code\u003e - only optional exists moving forward (use wildcards for \u003ccode\u003e+\u003c/code\u003e, \u003ccode\u003e{*foo}\u003c/code\u003e for \u003ccode\u003e*\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003eParameter names follow JS identifier rules and allow unicode characters\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/pillarjs/path-to-regexp/blob/master/History.md\"\u003epath-to-regexp's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eMoved to \u003ca href=\"https://github.com/pillarjs/path-to-regexp/releases\"\u003eGitHub Releases\u003c/a\u003e\u003c/h1\u003e\n\u003ch2\u003e3.0.0 / 2019-01-13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAlways use prefix character as delimiter token, allowing any character to be a delimiter (e.g. \u003ccode\u003e/:att1-:att2-:att3-:att4-:att5\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003epartial\u003c/code\u003e support, prefer escaping the prefix delimiter explicitly (e.g. \u003ccode\u003e\\\\/(apple-)?icon-:res(\\\\d+).png\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.4.0 / 2018-08-26\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport \u003ccode\u003estart\u003c/code\u003e option to disable anchoring from beginning of the string\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.3.0 / 2018-08-20\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse \u003ccode\u003edelimiter\u003c/code\u003e when processing repeated matching groups (e.g. \u003ccode\u003efoo/bar\u003c/code\u003e has no prefix, but has a delimiter)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.2.1 / 2018-04-24\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow empty string with \u003ccode\u003eend: false\u003c/code\u003e to match both relative and absolute paths\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.2.0 / 2018-03-06\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePass \u003ccode\u003etoken\u003c/code\u003e as second argument to \u003ccode\u003eencode\u003c/code\u003e option (e.g. \u003ccode\u003eencode(value, token)\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.1.0 / 2017-10-20\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle non-ending paths where the final character is a delimiter\n\u003cul\u003e\n\u003cli\u003eE.g. \u003ccode\u003e/foo/\u003c/code\u003e before required either \u003ccode\u003e/foo/\u003c/code\u003e or \u003ccode\u003e/foo//\u003c/code\u003e to match in non-ending mode\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.0.0 / 2017-08-23\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew option! Ability to set \u003ccode\u003eendsWith\u003c/code\u003e to match paths like \u003ccode\u003e/test?query=string\u003c/code\u003e up to the query string\u003c/li\u003e\n\u003cli\u003eNew option! Set \u003ccode\u003edelimiters\u003c/code\u003e for specific characters to be treated as parameter prefixes (e.g. \u003ccode\u003e/:test\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003eisarray\u003c/code\u003e dependency\u003c/li\u003e\n\u003cli\u003eExplicitly handle trailing delimiters instead of trimming them (e.g. \u003ccode\u003e/test/\u003c/code\u003e is now treated as \u003ccode\u003e/test/\u003c/code\u003e instead of \u003ccode\u003e/test\u003c/code\u003e when matching)\u003c/li\u003e\n\u003cli\u003eRemove overloaded \u003ccode\u003ekeys\u003c/code\u003e argument that accepted \u003ccode\u003eoptions\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eRemove \u003ccode\u003ekeys\u003c/code\u003e list attached to the \u003ccode\u003eRegExp\u003c/code\u003e output\u003c/li\u003e\n\u003cli\u003eRemove asterisk functionality (it's a real pain to properly encode)\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003etokensToFunction\u003c/code\u003e (e.g. \u003ccode\u003ecompile\u003c/code\u003e) to accept an \u003ccode\u003eencode\u003c/code\u003e function for pretty encoding (e.g. pass your own implementation)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.7.0 / 2016-11-08\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAllow a \u003ccode\u003edelimiter\u003c/code\u003e option to be passed in with \u003ccode\u003etokensToRegExp\u003c/code\u003e which will be used for \u0026quot;non-ending\u0026quot; token match situations\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.6.0 / 2016-10-03\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePopulate \u003ccode\u003eRegExp.keys\u003c/code\u003e when using the \u003ccode\u003etokensToRegExp\u003c/code\u003e method (making it consistent with the main export)\u003c/li\u003e\n\u003cli\u003eAllow a \u003ccode\u003edelimiter\u003c/code\u003e option to be passed in with \u003ccode\u003eparse\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eUpdated TypeScript definition with \u003ccode\u003eKeys\u003c/code\u003e and \u003ccode\u003eOptions\u003c/code\u003e updated\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.5.3 / 2016-06-15\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/c4f5b3fc10782a5de2bee55c3e40e5af890c9cad\"\u003e\u003ccode\u003ec4f5b3f\u003c/code\u003e\u003c/a\u003e 8.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/6587c812746cba94855867612f3a719bb25f794e\"\u003e\u003ccode\u003e6587c81\u003c/code\u003e\u003c/a\u003e Move parameter name errors up in docs (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/402\"\u003e#402\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/9df2448fdfca9d2957cf47a1777b5deda9be18cf\"\u003e\u003ccode\u003e9df2448\u003c/code\u003e\u003c/a\u003e Remove more bytes from parser (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/401\"\u003e#401\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/012a54a83c9e7fe77d1ee436c67048bca0512aca\"\u003e\u003ccode\u003e012a54a\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/403\"\u003e#403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/9385f7df7406b4607c3d18dfb276d5371f885418\"\u003e\u003ccode\u003e9385f7d\u003c/code\u003e\u003c/a\u003e Remove engines from package (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/399\"\u003e#399\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/2a7f2a4e9ba42eee41aa9d7a1a69eddb43b79a61\"\u003e\u003ccode\u003e2a7f2a4\u003c/code\u003e\u003c/a\u003e Add custom error class (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/398\"\u003e#398\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/265a2a7a26916a18fc6d1c5936c878a32a0fedb7\"\u003e\u003ccode\u003e265a2a7\u003c/code\u003e\u003c/a\u003e 100% test coverage (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/396\"\u003e#396\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/4a915059a843dfdd122a0c4936837c7fdda2d4ee\"\u003e\u003ccode\u003e4a91505\u003c/code\u003e\u003c/a\u003e Reduce bytes in parse function (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/395\"\u003e#395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/687a9bbc735245b2688c17db7e9fe86013ea0c77\"\u003e\u003ccode\u003e687a9bb\u003c/code\u003e\u003c/a\u003e Allow plain objects for \u003ccode\u003eTokenData\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/pillarjs/path-to-regexp/issues/391\"\u003e#391\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pillarjs/path-to-regexp/commit/a4a8552c9fb4449c470f...\n\n_Description has been truncated_","html_url":"https://github.com/qenex-ai/iframely-3a260097/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/qenex-ai%2Fiframely-3a260097/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"}},{"old_version":"2.1.1","new_version":"3.5.4","update_type":"major","path":null,"pr_created_at":"2026-03-02T06:41:31.000Z","version_change":"2.1.1 → 3.5.4","issue":{"uuid":"4009594597","node_id":"PR_kwDOORAVDc7HPved","number":20,"state":"closed","title":"build(deps): bump the npm_and_yarn group across 17 directories with 15 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-05T05:20:16.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-02T06:41:31.000Z","updated_at":"2026-03-05T05:20:17.000Z","time_to_close":254325,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":15,"packages":[{"name":"formidable","old_version":"2.1.1","new_version":"3.5.4","repository_url":"https://github.com/node-formidable/formidable"},{"name":"axios","old_version":"0.26.1","new_version":"0.30.3","repository_url":"https://github.com/axios/axios"},{"name":"tar","old_version":"6.1.11","new_version":"7.5.8","repository_url":"https://github.com/isaacs/node-tar"},{"name":"semver","old_version":"5.7.1","new_version":"5.7.2","repository_url":"https://github.com/npm/node-semver"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 7 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.1` | `3.5.4` |\n| [axios](https://github.com/axios/axios) | `0.26.1` | `0.30.3` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.11` | `7.5.8` |\n| [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n\nBumps the npm_and_yarn group with 2 updates in the /examples/07-nlpjs-on-aws-lambda/nlpjs-lambda-with-DynamoDB/nlpjs directory: [lodash](https://github.com/lodash/lodash) and [aws-sdk](https://github.com/aws/aws-sdk-js).\nBumps the npm_and_yarn group with 2 updates in the /examples/07-nlpjs-on-aws-lambda/nlpjs-lambda/hello-world directory: [axios](https://github.com/axios/axios) and [js-yaml](https://github.com/nodeca/js-yaml).\nBumps the npm_and_yarn group with 1 update in the /examples/07-nlpjs-on-aws-lambda/nlpjs-lambda/nlpjs directory: [lodash](https://github.com/lodash/lodash).\nBumps the npm_and_yarn group with 3 updates in the /packages/api-auth-jwt directory: [semver](https://github.com/npm/node-semver), [lodash](https://github.com/lodash/lodash) and [jws](https://github.com/brianloveswords/node-jws).\nBumps the npm_and_yarn group with 4 updates in the /packages/builtin-compromise directory: [semver](https://github.com/npm/node-semver), [js-yaml](https://github.com/nodeca/js-yaml), [brace-expansion](https://github.com/juliangruber/brace-expansion) and [minimatch](https://github.com/isaacs/minimatch).\nBumps the npm_and_yarn group with 3 updates in the /packages/dialogflow-connector directory: [qs](https://github.com/ljharb/qs), [jws](https://github.com/brianloveswords/node-jws) and [node-forge](https://github.com/digitalbazaar/forge).\nBumps the npm_and_yarn group with 1 update in the /packages/directline-connector directory: [formidable](https://github.com/node-formidable/formidable).\nBumps the npm_and_yarn group with 2 updates in the /packages/express-api-server directory: [semver](https://github.com/npm/node-semver) and [form-data](https://github.com/form-data/form-data).\nBumps the npm_and_yarn group with 1 update in the /packages/express-api-serverless directory: [qs](https://github.com/ljharb/qs).\nBumps the npm_and_yarn group with 3 updates in the /packages/fb-connector directory: [axios](https://github.com/axios/axios), [qs](https://github.com/ljharb/qs) and [lodash](https://github.com/lodash/lodash).\nBumps the npm_and_yarn group with 2 updates in the /packages/fullbot directory: [brace-expansion](https://github.com/juliangruber/brace-expansion) and [minimatch](https://github.com/isaacs/minimatch).\nBumps the npm_and_yarn group with 1 update in the /packages/lang-ja directory: [lodash](https://github.com/lodash/lodash).\nBumps the npm_and_yarn group with 1 update in the /packages/msbf-connector directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 4 updates in the /packages/open-question directory: [semver](https://github.com/npm/node-semver), [brace-expansion](https://github.com/juliangruber/brace-expansion), [minimatch](https://github.com/isaacs/minimatch) and [form-data](https://github.com/form-data/form-data).\nBumps the npm_and_yarn group with 1 update in the /packages/request-rn directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 4 updates in the /packages/utils directory: [tar](https://github.com/isaacs/node-tar), [brace-expansion](https://github.com/juliangruber/brace-expansion), [minimatch](https://github.com/isaacs/minimatch) and [tmp](https://github.com/raszi/node-tmp).\n\nUpdates `formidable` from 2.1.1 to 3.5.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-formidable/formidable/releases\"\u003eformidable's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix existing test failure by \u003ca href=\"https://github.com/ryhmrt\"\u003e\u003ccode\u003e@​ryhmrt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/990\"\u003enode-formidable/formidable#990\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate Ryan Dahl x account link by \u003ca href=\"https://github.com/moetezch\"\u003e\u003ccode\u003e@​moetezch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/989\"\u003enode-formidable/formidable#989\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate failing tests\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate CI/CD workflows and actions;\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate CodeQL github action for security analysis\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate readme, links and badges\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eupdate to use cuid2 (battle-tested \u003ccode\u003e@paralleldrive/cuid2\u003c/code\u003e package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ryhmrt\"\u003e\u003ccode\u003e@​ryhmrt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/990\"\u003enode-formidable/formidable#990\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moetezch\"\u003e\u003ccode\u003e@​moetezch\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/989\"\u003enode-formidable/formidable#989\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3\"\u003ehttps://github.com/node-formidable/formidable/compare/v3.5.2...v3.5.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.2\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev3.2.5\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003e3.2.4\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003e3.1.4\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\"\u003ehttps://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/node-formidable/formidable/blob/master/CHANGELOG.md\"\u003eformidable's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch3\u003e3.5.4\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix the \u003ccode\u003eos.machine\u003c/code\u003e breaking some dependents, fix \u003ca href=\"https://redirect.github.com/node-formidable/formidable/issues/994\"\u003e#994\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd Node 16, 18, 20, 22 to CI/CD\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.3\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esecurity report by ZAST.AI help for some vulnerabilities addressing (primarily the random names generation)\u003c/li\u003e\n\u003cli\u003eupdate failing tests\u003c/li\u003e\n\u003cli\u003eupdate CI/CD workflows and actions;\u003c/li\u003e\n\u003cli\u003eupdate CodeQL github action for security analysis\u003c/li\u003e\n\u003cli\u003eupdate readme, links and badges\u003c/li\u003e\n\u003cli\u003eupdate to use cuid2 (battle-tested \u003ccode\u003e@paralleldrive/cuid2\u003c/code\u003e package) for better random names - should not be breaking anything since it's still 25 characters long, but a lot safer and faster.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.2\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/982\"\u003e#982\u003c/a\u003e) make it easier to import hexoid with webpack\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.1\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/945\"\u003e#945\u003c/a\u003e) multipart parser fix: flush or fail always (don't hang)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.5.0\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeature: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/944\"\u003e#944\u003c/a\u003e) Dual package: Can be imported as ES module and required as commonjs module\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.4.0\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeature: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/940\"\u003e#940\u003c/a\u003e) form.parse returns a promise if no callback is provided\u003c/li\u003e\n\u003cli\u003eit resolves with an array \u003ccode\u003e[fields, files]\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.3.2\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeature: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/855\"\u003e#855\u003c/a\u003e) add options.createDirsFromUploads, see README for usage\u003c/li\u003e\n\u003cli\u003eform.parse is an async function (ignore the promise)\u003c/li\u003e\n\u003cli\u003ebenchmarks: add e2e becnhmark with as many request as possible per second\n\u003cul\u003e\n\u003cli\u003enpm run to display all the commands\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003emark as latest on npm\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.2.5\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/881\"\u003e#881\u003c/a\u003e) fail earlier when maxFiles is exceeded\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e3.2.4\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: (\u003ca href=\"https://redirect.github.com/node-formidable/formidable/pull/857\"\u003e#857\u003c/a\u003e) improve keep extension\u003c/li\u003e\n\u003cli\u003eThe code from before 3.2.4 already removed some characters from the file extension. But not always. So it was inconsistent.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 0.26.1 to 0.30.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease notes - v0.30.3\u003c/h2\u003e\n\u003cp\u003eThis is a critical security maintenance release for the v0.x branch. It addresses a high-priority vulnerability involving prototype pollution that could lead to a Denial of Service (DoS).\u003c/p\u003e\n\u003cp\u003eRecommendation: All users currently on the 0.x release line should upgrade to this version immediately to ensure environment stability.\u003c/p\u003e\n\u003ch2\u003e🛡️ Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBackport: Fix DoS via \u003cstrong\u003eproto\u003c/strong\u003e key in merge config\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003ePatched a vulnerability where specifically crafted configuration objects using the \u003cstrong\u003eproto\u003c/strong\u003e key could cause a Denial of Service during the merge process. - \u003cem\u003eby \u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e in [PR \u003ca href=\"https://redirect.github.com/axios/axios/issues/7388\"\u003e#7388\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/axios/axios/pull/7388\"\u003eaxios/axios#7388\u003c/a\u003e)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚙️ Maintenance \u0026amp; CI\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Infrastructure Update\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated Continuous Integration workflows for the v0.x branch to maintain long-term support and build reliability. - \u003cem\u003eby \u003ca href=\"https://github.com/jasonsaayman\"\u003e\u003ccode\u003e@​jasonsaayman\u003c/code\u003e\u003c/a\u003e in [PR \u003ca href=\"https://redirect.github.com/axios/axios/issues/7407\"\u003e#7407\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/axios/axios/pull/7407\"\u003eaxios/axios#7407\u003c/a\u003e)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cp\u003eConfiguration Merging Behavior:\u003c/p\u003e\n\u003cp\u003eAs part of the security fix, Axios now restricts the merging of the \u003cstrong\u003eproto\u003c/strong\u003e key within configuration objects. If your codebase relies on unconventional deep-merging patterns that target the object prototype via Axios config, those operations will now be blocked. This is a necessary change to prevent prototype pollution.\u003c/p\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.2...v0.30.3\"\u003ev0.30.2...v0.30.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.30.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u003ccode\u003emaxContentLength\u003c/code\u003e vulnerability fix to v0.x by \u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/7034\"\u003eaxios/axios#7034\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/axios/axios/pull/7034\"\u003eaxios/axios#7034\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.1...v0.30.2\"\u003ehttps://github.com/axios/axios/compare/v0.30.1...v0.30.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.30.1\u003c/h2\u003e\n\u003ch2\u003eRelease notes:\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump form-data from 4.0.0 to 4.0.4 for v0.x by \u003ca href=\"https://github.com/wolandec\"\u003e\u003ccode\u003e@​wolandec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6978\"\u003eaxios/axios#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wolandec\"\u003e\u003ccode\u003e@​wolandec\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6978\"\u003eaxios/axios#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.0...v0.30.1\"\u003ehttps://github.com/axios/axios/compare/v0.30.0...v0.30.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.30.0\u003c/h2\u003e\n\u003ch2\u003eRelease notes:\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: modify log while request is aborted by \u003ca href=\"https://github.com/mori5321\"\u003e\u003ccode\u003e@​mori5321\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/4917\"\u003eaxios/axios#4917\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update CHANGELOG.md for v0.x by \u003ca href=\"https://github.com/TehZarathustra\"\u003e\u003ccode\u003e@​TehZarathustra\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6271\"\u003eaxios/axios#6271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: modify upgrade guide for 0.28.1's breaking change by \u003ca href=\"https://github.com/nafeger\"\u003e\u003ccode\u003e@​nafeger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6787\"\u003eaxios/axios#6787\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f53bcf6c3747652c9d3811dc0bbcd3674e21567a\"\u003e\u003ccode\u003ef53bcf6\u003c/code\u003e\u003c/a\u003e chore: release 0.30.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3ddccd3bf478c8aab863f2fdd4a52461849eab45\"\u003e\u003ccode\u003e3ddccd3\u003c/code\u003e\u003c/a\u003e chore: remove publish as this wont work\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9ef39d07245286df678c1a16e7b5769610ba8326\"\u003e\u003ccode\u003e9ef39d0\u003c/code\u003e\u003c/a\u003e chore: try with npm token\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4775de601df704d8d4e7336a57b08a2e21de8ff4\"\u003e\u003ccode\u003e4775de6\u003c/code\u003e\u003c/a\u003e chore: fix version scheme\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f96f26b2014404534424e765b83a1dbbd8cb091f\"\u003e\u003ccode\u003ef96f26b\u003c/code\u003e\u003c/a\u003e chore: fix issues with using replace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ead45c20b05ab32c26cb63d0f7a20e8b123d9f68\"\u003e\u003ccode\u003eead45c2\u003c/code\u003e\u003c/a\u003e chore: update the publish workflow to run on tag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8119265e6ce71898d19448d30356789cccc2de56\"\u003e\u003ccode\u003e8119265\u003c/code\u003e\u003c/a\u003e chore: tag version as legacy on v0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/995498519881c23ba97b42dda16bcadc0e4791a7\"\u003e\u003ccode\u003e9954985\u003c/code\u003e\u003c/a\u003e chore: dispatch for first time\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3f8b70fdfc7903aa137ea4f6539cd00f5df97afb\"\u003e\u003ccode\u003e3f8b70f\u003c/code\u003e\u003c/a\u003e chore: final rename\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/c66558430e71cf0c113a2969355cde25cb159fff\"\u003e\u003ccode\u003ec665584\u003c/code\u003e\u003c/a\u003e chore: revert naming\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v0.26.1...v0.30.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `tar` from 6.1.11 to 7.5.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/releases\"\u003etar's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.1.13\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-tar/compare/v6.1.12...v6.1.13\"\u003e6.1.13\u003c/a\u003e (2022-12-07)\u003c/h2\u003e\n\u003ch3\u003eDependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-tar/commit/cc4e0ddfe523a0bce383846a67442c637a65d486\"\u003e\u003ccode\u003ecc4e0dd\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-tar/pull/343\"\u003e#343\u003c/a\u003e bump minipass from 3.3.6 to 4.0.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.1.12\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-tar/compare/v6.1.11...v6.1.12\"\u003e6.1.12\u003c/a\u003e (2022-10-31)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-tar/commit/57493ee66ece50d62114e02914282fc37be3a91a\"\u003e\u003ccode\u003e57493ee\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-tar/pull/332\"\u003e#332\u003c/a\u003e ensuring close event is emited after stream has ended (\u003ca href=\"https://github.com/webark\"\u003e\u003ccode\u003e@​webark\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-tar/commit/b003c64f624332e24e19b30dc011069bb6708680\"\u003e\u003ccode\u003eb003c64\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-tar/pull/314\"\u003e#314\u003c/a\u003e replace deprecated String.prototype.substr() (\u003ca href=\"https://redirect.github.com/isaacs/node-tar/issues/314\"\u003e#314\u003c/a\u003e) (\u003ca href=\"https://github.com/CommanderRoot\"\u003e\u003ccode\u003e@​CommanderRoot\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukekarrys\"\u003e\u003ccode\u003e@​lukekarrys\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-tar/commit/f12992932f171ea248b27fad95e7d489a56d31ed\"\u003e\u003ccode\u003ef129929\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-tar/pull/313\"\u003e#313\u003c/a\u003e remove dead link to benchmarks (\u003ca href=\"https://redirect.github.com/isaacs/node-tar/issues/313\"\u003e#313\u003c/a\u003e) (\u003ca href=\"https://github.com/yetzt\"\u003e\u003ccode\u003e@​yetzt\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-tar/commit/c1faa9f44001dfb0bc7638b2850eb6058bd56a4a\"\u003e\u003ccode\u003ec1faa9f\u003c/code\u003e\u003c/a\u003e add examples/explanation of using tar.t (\u003ca href=\"https://github.com/isaacs\"\u003e\u003ccode\u003e@​isaacs\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md\"\u003etar's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e7.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003ezstd\u003c/code\u003e compression support.\u003c/li\u003e\n\u003cli\u003eConsistent TOCTOU behavior in sync t.list\u003c/li\u003e\n\u003cli\u003eOnly read from ustar block if not specified in Pax\u003c/li\u003e\n\u003cli\u003eFix sync tar.list when file size reduces while reading\u003c/li\u003e\n\u003cli\u003eSanitize absolute linkpaths properly\u003c/li\u003e\n\u003cli\u003ePrevent writing hardlink entries to the archive ahead of their\nfile target\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eonentry\u003c/code\u003e in favor of \u003ccode\u003eonReadEntry\u003c/code\u003e for clarity.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eonWriteEntry\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDRY the command definitions into a single \u003ccode\u003emakeCommand\u003c/code\u003e method,\nand update the type signatures to more appropriately infer the\nreturn type from the options and arguments provided.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate minipass to v7.1.0\u003c/li\u003e\n\u003cli\u003eUpdate the type definitions of \u003ccode\u003ewrite()\u003c/code\u003e and \u003ccode\u003eend()\u003c/code\u003e methods on\n\u003ccode\u003eUnpack\u003c/code\u003e and \u003ccode\u003eParser\u003c/code\u003e classes to be compatible with the\nNodeJS.WritableStream type in the latest versions of\n\u003ccode\u003e@types/node\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node \u0026lt;18\u003c/li\u003e\n\u003cli\u003eRewrite in TypeScript, provide ESM and CommonJS hybrid\ninterface\u003c/li\u003e\n\u003cli\u003eAdd tree-shake friendly exports, like \u003ccode\u003eimport('tar/create')\u003c/code\u003e\nand \u003ccode\u003eimport('tar/read-entry')\u003c/code\u003e to get individual functions or\nclasses.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003echmod\u003c/code\u003e option that defaults to false, and deprecate\n\u003ccode\u003enoChmod\u003c/code\u003e. That is, reverse the default option regarding\nexplicitly setting file system modes to match tar entry\nsettings.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eprocessUmask\u003c/code\u003e option to avoid having to call\n\u003ccode\u003eprocess.umask()\u003c/code\u003e when \u003ccode\u003echmod: true\u003c/code\u003e (or \u003ccode\u003enoChmod: false\u003c/code\u003e) is\nset.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/6b8eba0ef367ac937e703238daa6df94ae6f823f\"\u003e\u003ccode\u003e6b8eba0\u003c/code\u003e\u003c/a\u003e 7.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/2cb1120bcefe28d7ecc719b41441ade59c52e384\"\u003e\u003ccode\u003e2cb1120\u003c/code\u003e\u003c/a\u003e fix(unpack): improve UnpackSync symlink error \u0026quot;into\u0026quot; path accuracy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/d18e4e1f846f4ddddc153b0f536a19c050e7499f\"\u003e\u003ccode\u003ed18e4e1\u003c/code\u003e\u003c/a\u003e fix: do not write linkpaths through symlinks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/4a37eb9a1cf1137df4eb70c5c7f849f412ff3cdb\"\u003e\u003ccode\u003e4a37eb9\u003c/code\u003e\u003c/a\u003e 7.5.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/f4a7aa9bc3d717c987fdf1480ff7a64e87ffdb46\"\u003e\u003ccode\u003ef4a7aa9\u003c/code\u003e\u003c/a\u003e fix: properly sanitize hard links containing ..\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/394ece6ad8d81742a4e4058af227c616cd947a25\"\u003e\u003ccode\u003e394ece6\u003c/code\u003e\u003c/a\u003e 7.5.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/7d4cc17c76f6bd11dcd83de47187dc6dff206eee\"\u003e\u003ccode\u003e7d4cc17\u003c/code\u003e\u003c/a\u003e fix race puting a Link ahead of its target File\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/26ab90474e642cf00d84a05bcdc2eaf2a19f1581\"\u003e\u003ccode\u003e26ab904\u003c/code\u003e\u003c/a\u003e 7.5.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/e9a1ddb821b29ddee75b9470dd511066148c8070\"\u003e\u003ccode\u003ee9a1ddb\u003c/code\u003e\u003c/a\u003e fix: do not prevent valid linkpaths within archive\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-tar/commit/911c886bb170a6ee3db05fd3709221752213ec8a\"\u003e\u003ccode\u003e911c886\u003c/code\u003e\u003c/a\u003e 7.5.4\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-tar/compare/v6.1.11...v7.5.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for tar since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `semver` from 5.7.1 to 5.7.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/npm/node-semver/releases\"\u003esemver's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.7.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2\"\u003e5.7.2\u003c/a\u003e (2023-07-10)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/2f8fd41487acf380194579ecb6f8b1bbfe116be0\"\u003e\u003ccode\u003e2f8fd41\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/585\"\u003e#585\u003c/a\u003e better handling of whitespace (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/585\"\u003e#585\u003c/a\u003e) (\u003ca href=\"https://github.com/joaomoreno\"\u003e\u003ccode\u003e@​joaomoreno\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukekarrys\"\u003e\u003ccode\u003e@​lukekarrys\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md\"\u003esemver's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2\"\u003e5.7.2\u003c/a\u003e (2023-07-10)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/2f8fd41487acf380194579ecb6f8b1bbfe116be0\"\u003e\u003ccode\u003e2f8fd41\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/npm/node-semver/pull/585\"\u003e#585\u003c/a\u003e better handling of whitespace (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/585\"\u003e#585\u003c/a\u003e) (\u003ca href=\"https://github.com/joaomoreno\"\u003e\u003ccode\u003e@​joaomoreno\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/lukekarrys\"\u003e\u003ccode\u003e@​lukekarrys\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eminVersion\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove boolean \u003ccode\u003eloose\u003c/code\u003e param to an options object, with\nbackwards-compatibility protection.\u003c/li\u003e\n\u003cli\u003eAdd ability to opt out of special prerelease version handling with\nthe \u003ccode\u003eincludePrerelease\u003c/code\u003e option flag.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd version coercion capabilities\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd intersection checking\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eminSatisfying\u003c/code\u003e method\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eprerelease(v)\u003c/code\u003e that returns prerelease components\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Backus-Naur for ranges\u003c/li\u003e\n\u003cli\u003eRemove excessively cute inspection methods\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove AMD/Browserified build artifacts\u003c/li\u003e\n\u003cli\u003eFix ltr and gtr when using the \u003ccode\u003e*\u003c/code\u003e range\u003c/li\u003e\n\u003cli\u003eFix for range \u003ccode\u003e*\u003c/code\u003e with a prerelease identifier\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/f8cc313550691a50d9662d8c94f0c033717efd7d\"\u003e\u003ccode\u003ef8cc313\u003c/code\u003e\u003c/a\u003e chore: release 5.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/2f8fd41487acf380194579ecb6f8b1bbfe116be0\"\u003e\u003ccode\u003e2f8fd41\u003c/code\u003e\u003c/a\u003e fix: better handling of whitespace (\u003ca href=\"https://redirect.github.com/npm/node-semver/issues/585\"\u003e#585\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/npm/node-semver/commit/deb5ad51bf58868fa243c1683775305fe9e0e365\"\u003e\u003ccode\u003edeb5ad5\u003c/code\u003e\u003c/a\u003e chore: \u003ccode\u003e@​npmcli/template-oss\u003c/code\u003e\u003ca href=\"https://github.com/4\"\u003e\u003ccode\u003e@​4\u003c/code\u003e\u003c/a\u003e.16.0\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~lukekarrys\"\u003elukekarrys\u003c/a\u003e, a new releaser for semver since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `aws-sdk` from 2.814.0 to 2.1693.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js/releases\"\u003eaws-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.1693.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1692.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1691.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1690.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1689.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1688.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1687.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1686.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1685.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1684.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1683.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1682.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1681.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1680.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1679.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1678.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1677.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/9d3c66eca8c4416a9d347d0703f27b65775d65ef\"\u003e\u003ccode\u003e9d3c66e\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1693.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c039567cee58b50a44f53f30318fa21f36c42ecc\"\u003e\u003ccode\u003ec039567\u003c/code\u003e\u003c/a\u003e test(client-elastictranscoder): remove feature test (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4711\"\u003e#4711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/f5b1a6f0aebb477204d979091d654649f29ad9ce\"\u003e\u003ccode\u003ef5b1a6f\u003c/code\u003e\u003c/a\u003e docs: end-of-support (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4706\"\u003e#4706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/657d6feb00447c8be1d65158a0ecc0585b70ed60\"\u003e\u003ccode\u003e657d6fe\u003c/code\u003e\u003c/a\u003e chore: use ssh private key for git sync (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4705\"\u003e#4705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c12585baeb9197158cd50975af66856617732aea\"\u003e\u003ccode\u003ec12585b\u003c/code\u003e\u003c/a\u003e chore: remove regression label management (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4699\"\u003e#4699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/966fa6c316dbb11ca9277564ff7120e6b16467f4\"\u003e\u003ccode\u003e966fa6c\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1692.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/5d0e38adbbc1a3fd6e6bf7c48cd7e209e9eb0b5f\"\u003e\u003ccode\u003e5d0e38a\u003c/code\u003e\u003c/a\u003e Delete EC2 launch configuration e2e tests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4685\"\u003e#4685\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/b9ce3461a495dcf4f4a0be133e103d98130847a6\"\u003e\u003ccode\u003eb9ce346\u003c/code\u003e\u003c/a\u003e chore: fix issue config (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4683\"\u003e#4683\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c06668172b233e0b2ded1afc48f0a11f6b79735c\"\u003e\u003ccode\u003ec066681\u003c/code\u003e\u003c/a\u003e Update issue template config and disable docs requests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4682\"\u003e#4682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/163a7cfc86308e0b54245c04fb7b317bcd3893b0\"\u003e\u003ccode\u003e163a7cf\u003c/code\u003e\u003c/a\u003e Modified bug issue template to add checkbox to report potential regression. (...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-js/compare/v2.814.0...v2.1693.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 0.21.2 to 0.30.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease notes - v0.30.3\u003c/h2\u003e\n\u003cp\u003eThis is a critical security maintenance release for the v0.x branch. It addresses a high-priority vulnerability involving prototype pollution that could lead to a Denial of Service (DoS).\u003c/p\u003e\n\u003cp\u003eRecommendation: All users currently on the 0.x release line should upgrade to this version immediately to ensure environment stability.\u003c/p\u003e\n\u003ch2\u003e🛡️ Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBackport: Fix DoS via \u003cstrong\u003eproto\u003c/strong\u003e key in merge config\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003ePatched a vulnerability where specifically crafted configuration objects using the \u003cstrong\u003eproto\u003c/strong\u003e key could cause a Denial of Service during the merge process. - \u003cem\u003eby \u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e in [PR \u003ca href=\"https://redirect.github.com/axios/axios/issues/7388\"\u003e#7388\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/axios/axios/pull/7388\"\u003eaxios/axios#7388\u003c/a\u003e)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚙️ Maintenance \u0026amp; CI\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Infrastructure Update\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated Continuous Integration workflows for the v0.x branch to maintain long-term support and build reliability. - \u003cem\u003eby \u003ca href=\"https://github.com/jasonsaayman\"\u003e\u003ccode\u003e@​jasonsaayman\u003c/code\u003e\u003c/a\u003e in [PR \u003ca href=\"https://redirect.github.com/axios/axios/issues/7407\"\u003e#7407\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/axios/axios/pull/7407\"\u003eaxios/axios#7407\u003c/a\u003e)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cp\u003eConfiguration Merging Behavior:\u003c/p\u003e\n\u003cp\u003eAs part of the security fix, Axios now restricts the merging of the \u003cstrong\u003eproto\u003c/strong\u003e key within configuration objects. If your codebase relies on unconventional deep-merging patterns that target the object prototype via Axios config, those operations will now be blocked. This is a necessary change to prevent prototype pollution.\u003c/p\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.2...v0.30.3\"\u003ev0.30.2...v0.30.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.30.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u003ccode\u003emaxContentLength\u003c/code\u003e vulnerability fix to v0.x by \u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/7034\"\u003eaxios/axios#7034\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/axios/axios/pull/7034\"\u003eaxios/axios#7034\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.1...v0.30.2\"\u003ehttps://github.com/axios/axios/compare/v0.30.1...v0.30.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.30.1\u003c/h2\u003e\n\u003ch2\u003eRelease notes:\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump form-data from 4.0.0 to 4.0.4 for v0.x by \u003ca href=\"https://github.com/wolandec\"\u003e\u003ccode\u003e@​wolandec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6978\"\u003eaxios/axios#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wolandec\"\u003e\u003ccode\u003e@​wolandec\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6978\"\u003eaxios/axios#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.0...v0.30.1\"\u003ehttps://github.com/axios/axios/compare/v0.30.0...v0.30.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.30.0\u003c/h2\u003e\n\u003ch2\u003eRelease notes:\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: modify log while request is aborted by \u003ca href=\"https://github.com/mori5321\"\u003e\u003ccode\u003e@​mori5321\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/4917\"\u003eaxios/axios#4917\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update CHANGELOG.md for v0.x by \u003ca href=\"https://github.com/TehZarathustra\"\u003e\u003ccode\u003e@​TehZarathustra\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6271\"\u003eaxios/axios#6271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: modify upgrade guide for 0.28.1's breaking change by \u003ca href=\"https://github.com/nafeger\"\u003e\u003ccode\u003e@​nafeger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6787\"\u003eaxios/axios#6787\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f53bcf6c3747652c9d3811dc0bbcd3674e21567a\"\u003e\u003ccode\u003ef53bcf6\u003c/code\u003e\u003c/a\u003e chore: release 0.30.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3ddccd3bf478c8aab863f2fdd4a52461849eab45\"\u003e\u003ccode\u003e3ddccd3\u003c/code\u003e\u003c/a\u003e chore: remove publish as this wont work\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9ef39d07245286df678c1a16e7b5769610ba8326\"\u003e\u003ccode\u003e9ef39d0\u003c/code\u003e\u003c/a\u003e chore: try with npm token\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4775de601df704d8d4e7336a57b08a2e21de8ff4\"\u003e\u003ccode\u003e4775de6\u003c/code\u003e\u003c/a\u003e chore: fix version scheme\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f96f26b2014404534424e765b83a1dbbd8cb091f\"\u003e\u003ccode\u003ef96f26b\u003c/code\u003e\u003c/a\u003e chore: fix issues with using replace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ead45c20b05ab32c26cb63d0f7a20e8b123d9f68\"\u003e\u003ccode\u003eead45c2\u003c/code\u003e\u003c/a\u003e chore: update the publish workflow to run on tag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8119265e6ce71898d19448d30356789cccc2de56\"\u003e\u003ccode\u003e8119265\u003c/code\u003e\u003c/a\u003e chore: tag version as legacy on v0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/995498519881c23ba97b42dda16bcadc0e4791a7\"\u003e\u003ccode\u003e9954985\u003c/code\u003e\u003c/a\u003e chore: dispatch for first time\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3f8b70fdfc7903aa137ea4f6539cd00f5df97afb\"\u003e\u003ccode\u003e3f8b70f\u003c/code\u003e\u003c/a\u003e chore: final rename\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/c66558430e71cf0c113a2969355cde25cb159fff\"\u003e\u003ccode\u003ec665584\u003c/code\u003e\u003c/a\u003e chore: revert naming\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v0.26.1...v0.30.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 4.1.0 to 4.1.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"https://github.com/nodeca/js-yaml-js-types\"\u003ejs-yaml-js-types\u003c/a\u003e package.\u003c/li\u003e\n\u003cli\u003eBreaking: removed \u003ccode\u003esafe*\u003c/code\u003e functions. Use \u003ccode\u003eload\u003c/code\u003e, \u003ccode\u003eloadAll\u003c/code\u003e, \u003ccode\u003edump\u003c/code\u003e\ninstead which are all now safe by default.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.DEFAULT_SAFE_SCHEMA\u003c/code\u003e and \u003ccode\u003eyaml.DEFAULT_FULL_SCHEMA\u003c/code\u003e are removed, use\n\u003ccode\u003eyaml.DEFAULT_SCHEMA\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eyaml.Schema.create(schema, tags)\u003c/code\u003e is removed, use \u003ccode\u003eschema.extend(tags)\u003c/code\u003e instead.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e!!binary\u003c/code\u003e now always mapped to \u003ccode\u003eUint8Array\u003c/code\u003e on load.\u003c/li\u003e\n\u003cli\u003eReduced nesting of \u003ccode\u003e/lib\u003c/code\u003e folder.\u003c/li\u003e\n\u003cli\u003eParse numbers according to YAML 1.2 instead of YAML 1.1 (\u003ccode\u003e01234\u003c/code\u003e is now decimal,\n\u003ccode\u003e0o1234\u003c/code\u003e is octal, \u003ccode\u003e1:23\u003c/code\u003e is parsed as string instead of base60).\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e no longer quotes \u003ccode\u003e:\u003c/code\u003e, \u003ccode\u003e[\u003c/code\u003e, \u003ccode\u003e]\u003c/code\u003e, \u003ccode\u003e(\u003c/code\u003e, \u003ccode\u003e)\u003c/code\u003e except when necessary, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/470\"\u003e#470\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/557\"\u003e#557\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eLine and column in exceptions are now formatted as \u003ccode\u003e(X:Y)\u003c/code\u003e instead of\n\u003ccode\u003eat line X, column Y\u003c/code\u003e (also present in compact format), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/332\"\u003e#332\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCode snippet created in exceptions now contains multiple lines with line numbers.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e now serializes \u003ccode\u003eundefined\u003c/code\u003e as \u003ccode\u003enull\u003c/code\u003e in collections and removes keys with\n\u003ccode\u003eundefined\u003c/code\u003e in mappings, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/571\"\u003e#571\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edump()\u003c/code\u003e with \u003ccode\u003eskipInvalid=true\u003c/code\u003e now serializes invalid items in collections as null.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003e!\u003c/code\u003e are now dumped as \u003ccode\u003e!tag\u003c/code\u003e instead of \u003ccode\u003e!\u0026lt;!tag\u0026gt;\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/576\"\u003e#576\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eCustom tags starting with \u003ccode\u003etag:yaml.org,2002:\u003c/code\u003e are now shorthanded using \u003ccode\u003e!!\u003c/code\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/258\"\u003e#258\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003e.mjs\u003c/code\u003e (es modules) support.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003equotingType\u003c/code\u003e and \u003ccode\u003eforceQuotes\u003c/code\u003e options for dumper to configure\nstring literal style, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/290\"\u003e#290\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/529\"\u003e#529\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003estyles: { '!!null': 'empty' }\u003c/code\u003e option for dumper\n(serializes \u003ccode\u003e{ foo: null }\u003c/code\u003e as \u0026quot;\u003ccode\u003efoo: \u003c/code\u003e\u0026quot;), \u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/570\"\u003e#570\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/9963d366dfbde0c69722452bcd40b41e7e4160a0\"\u003e\u003ccode\u003e9963d36\u003c/code\u003e\u003c/a\u003e 3.14.2 released\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/10d3c8e70a6888543f5cdb656bb39f73e0ea77c1\"\u003e\u003ccode\u003e10d3c8e\u003c/code\u003e\u003c/a\u003e dist rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodeca/js-yaml/commit/5278870a17454fe8621dbd8c445c412529525266\"\u003e\u003ccode\u003e5278870\u003c/code\u003e\u003c/a\u003e fix prototype pollution in merge (\u0026lt;\u0026lt;) (\u003ca href=\"https://redirect.github.com/nodeca/js-yaml/issues/731\"\u003e#731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 2.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `minimatch` from 3.1.2 to 5.1.9\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/7bba97888a27a6162983056bcce2a6e28f668712\"\u003e\u003ccode\u003e7bba978\u003c/code\u003e\u003c/a\u003e 3.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/bd259425b2ca17b42897997f93e890314155522d\"\u003e\u003ccode\u003ebd25942\u003c/code\u003e\u003c/a\u003e docs: add warning about ReDoS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a9c27c75725474dbde57db2995b6281b267756d\"\u003e\u003ccode\u003e1a9c27c\u003c/code\u003e\u003c/a\u003e fix partial matching of globstar patterns\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/1a2e084af579731af66c221214e3ca8222c9bf23\"\u003e\u003ccode\u003e1a2e084\u003c/code\u003e\u003c/a\u003e 3.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/ae24656237c3d58067442f790ce17eff84463a47\"\u003e\u003ccode\u003eae24656\u003c/code\u003e\u003c/a\u003e update lockfile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/b1003749228b2a79e1f237963a0d559ef7a0941e\"\u003e\u003ccode\u003eb100374\u003c/code\u003e\u003c/a\u003e limit recursion for **, improve perf considerably\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/26ffeaa091b9f660833e23f42e07165b33e85c13\"\u003e\u003ccode\u003e26ffeaa\u003c/code\u003e\u003c/a\u003e lockfile update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/9eca892a4e5dbb20534f9f30483b85cdeee6c2eb\"\u003e\u003ccode\u003e9eca892\u003c/code\u003e\u003c/a\u003e lock node version to 14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/00c323b188b704e5d4bc534ecec2268cfa70a32a\"\u003e\u003ccode\u003e00c323b\u003c/code\u003e\u003c/a\u003e 3.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/minimatch/commit/30486b2048929264f44d18822891cfffa02af78b\"\u003e\u003ccode\u003e30486b2\u003c/code\u003e\u003c/a\u003e update CI matrix and actions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/minimatch/compare/v3.1.2...v3.1.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `serialize-javascript` from 6.0.0 to 6.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/yahoo/serialize-javascript/releases\"\u003eserialize-javascript's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: serialize URL string contents to prevent XSS (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/173\"\u003e#173\u003c/a\u003e)  f27d65d\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​babel/traverse\u003c/code\u003e from 7.10.1 to 7.23.7 (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/171\"\u003e#171\u003c/a\u003e)  02499c0\u003c/li\u003e\n\u003cli\u003edocs: update readme with URL support (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/146\"\u003e#146\u003c/a\u003e)  0d88527\u003c/li\u003e\n\u003cli\u003echore: update node version and lock file  e2a3a91\u003c/li\u003e\n\u003cli\u003efix typo (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/164\"\u003e#164\u003c/a\u003e)  5a1fa64\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/compare/v6.0.1...v6.0.2\"\u003ehttps://github.com/yahoo/serialize-javascript/compare/v6.0.1...v6.0.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump mocha from 9.0.1 to 9.0.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/126\"\u003eyahoo/serialize-javascript#126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.0.2 to 9.0.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/127\"\u003eyahoo/serialize-javascript#127\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump path-parse from 1.0.6 to 1.0.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/129\"\u003eyahoo/serialize-javascript#129\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.0.3 to 9.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/130\"\u003eyahoo/serialize-javascript#130\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.1.0 to 9.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/131\"\u003eyahoo/serialize-javascript#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.1.1 to 9.1.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/132\"\u003eyahoo/serialize-javascript#132\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.1.2 to 9.1.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/133\"\u003eyahoo/serialize-javascript#133\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.1.3 to 9.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/137\"\u003eyahoo/serialize-javascript#137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.1.4 to 9.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/138\"\u003eyahoo/serialize-javascript#138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump chai from 4.3.4 to 4.3.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/140\"\u003eyahoo/serialize-javascript#140\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump ansi-regex from 5.0.0 to 5.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/141\"\u003eyahoo/serialize-javascript#141\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.2.0 to 9.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/143\"\u003eyahoo/serialize-javascript#143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimist from 1.2.5 to 1.2.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/144\"\u003eyahoo/serialize-javascript#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 9.2.2 to 10.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/145\"\u003eyahoo/serialize-javascript#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 10.0.0 to 10.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/149\"\u003eyahoo/serialize-javascript#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump chai from 4.3.6 to 4.3.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/150\"\u003eyahoo/serialize-javascript#150\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: test.yml - actions bump by \u003ca href=\"https://github.com/piwysocki\"\u003e\u003ccode\u003e@​piwysocki\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/151\"\u003eyahoo/serialize-javascript#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.0.4 to 3.1.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/152\"\u003eyahoo/serialize-javascript#152\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump mocha from 10.1.0 to 10.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/153\"\u003eyahoo/serialize-javascript#153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump json5 from 2.1.3 to 2.2.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/155\"\u003eyahoo/serialize-javascript#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix serialization issue for 0n. by \u003ca href=\"https://github.com/momocow\"\u003e\u003ccode\u003e@​momocow\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/156\"\u003eyahoo/serialize-javascript#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v6.0.1 by \u003ca href=\"https://github.com/okuryu\"\u003e\u003ccode\u003e@​okuryu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/157\"\u003eyahoo/serialize-javascript#157\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/piwysocki\"\u003e\u003ccode\u003e@​piwysocki\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/151\"\u003eyahoo/serialize-javascript#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/momocow\"\u003e\u003ccode\u003e@​momocow\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/pull/156\"\u003eyahoo/serialize-javascript#156\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/yahoo/serialize-javascript/compare/v6.0.0...v6.0.1\"\u003ehttps://github.com/yahoo/serialize-javascript/compare/v6.0.0...v6.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/b71ec23841d7cf30847d3071d9da38ee0b397fc8\"\u003e\u003ccode\u003eb71ec23\u003c/code\u003e\u003c/a\u003e 6.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e\"\u003e\u003ccode\u003ef27d65d\u003c/code\u003e\u003c/a\u003e fix: serialize URL string contents to prevent XSS (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/173\"\u003e#173\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/02499c0adfb40f48e1ebdcbe6fffc83b162b95e9\"\u003e\u003ccode\u003e02499c0\u003c/code\u003e\u003c/a\u003e Bump \u003ccode\u003e@​babel/traverse\u003c/code\u003e from 7.10.1 to 7.23.7 (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/171\"\u003e#171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/0d885272f45069b1207189ae18a6f2726b4abaa9\"\u003e\u003ccode\u003e0d88527\u003c/code\u003e\u003c/a\u003e docs: update readme with URL support (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/146\"\u003e#146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/e2a3a9173e6770ee92e02d95d6a8e7958dfb419d\"\u003e\u003ccode\u003ee2a3a91\u003c/code\u003e\u003c/a\u003e chore: update node version and lock file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/5a1fa646d9cbbe0b4f13c07f01c249fb2493e20f\"\u003e\u003ccode\u003e5a1fa64\u003c/code\u003e\u003c/a\u003e fix typo (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/164\"\u003e#164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/7139f9251b4cad52136513cf3360869e1e645d6c\"\u003e\u003ccode\u003e7139f92\u003c/code\u003e\u003c/a\u003e Release v6.0.1 (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/157\"\u003e#157\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/7e23ae89e4b65ebf8836fcbaab637d49fb32ecb2\"\u003e\u003ccode\u003e7e23ae8\u003c/code\u003e\u003c/a\u003e Fix serialization issue for 0n. (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/156\"\u003e#156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/343abd98ff0a3f88f61fca35100762fdd6cb1963\"\u003e\u003ccode\u003e343abd9\u003c/code\u003e\u003c/a\u003e Bump json5 from 2.1.3 to 2.2.3 (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/155\"\u003e#155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yahoo/serialize-javascript/commit/38d0e70e2d82662b2ec4fa2f7f3e1289db745db1\"\u003e\u003ccode\u003e38d0e70\u003c/code\u003e\u003c/a\u003e Bump mocha from 10.1.0 to 10.2.0 (\u003ca href=\"https://redirect.github.com/yahoo/serialize-javascript/issues/153\"\u003e#153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/yahoo/serialize-javascript/compare/v6.0.0...v6.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/co...\n\n_Description has been truncated_\n\u003c!-- ELLIPSIS_HIDDEN --\u003e\n\n----\n\n\u003e [!IMPORTANT]\n\u003e Bumps npm dependencies across multiple directories, including `formidable`, `axios`, `aws-sdk`, and `tar`, to their latest versions.\n\u003e \n\u003e   - **Dependency Updates**:\n\u003e     - Updates `formidable` to 3.5.4 in `directline-connector`.\n\u003e     - Updates `axios` to 0.30.3 in `hello-world` and `request-rn`.\n\u003e     - Updates `aws-sdk` to 2.1693.0 in `nlpjs-lambda-with-DynamoDB`.\n\u003e     - Updates `tar` to 7.5.8 in `utils`.\n\u003e   - **Dev Dependency Updates**:\n\u003e     - Updates `mocha` to 10.8.2 in `hello-world`.\n\u003e \n\u003e \u003csup\u003eThis description was created by \u003c/sup\u003e[\u003cimg alt=\"Ellipsis\" src=\"https://img.shields.io/badge/Ellipsis-blue?color=175173\"\u003e](https://www.ellipsis.dev?ref=JohnDaWalka%2Fnlp.js\u0026utm_source=github\u0026utm_medium=referral)\u003csup\u003e for 9614d958012ca8bd2b0ee9d8f116155b06baa15a. You can [customize](https://app.ellipsis.dev/JohnDaWalka/settings/summaries) this summary. It will automatically update as commits are pushed.\u003c/sup\u003e\n\n\u003c!-- ELLIPSIS_HIDDEN --\u003e","html_url":"https://github.com/JohnDaWalka/nlp.js/pull/20","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/JohnDaWalka%2Fnlp.js/issues/20","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/20/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-02-27T17:56:51.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"4002187563","node_id":"PR_kwDOMooqHM7G4pUJ","number":10,"state":"open","title":"Bump the npm_and_yarn group across 13 directories with 20 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-27T17:56:51.000Z","updated_at":"2026-02-27T17:56:55.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":20,"packages":[{"name":"aws-sdk","old_version":"2.1448.0","new_version":"2.1693.0","repository_url":"https://github.com/aws/aws-sdk-js"},{"name":"axios","old_version":"1.5.0","new_version":"1.13.5","repository_url":"https://github.com/axios/axios"},{"name":"bn.js","old_version":"5.2.1","new_version":"5.2.3","repository_url":"https://github.com/indutny/bn.js"},{"name":"fastify","old_version":"4.22.0","new_version":"5.7.3","repository_url":"https://github.com/fastify/fastify"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"next","old_version":"13.4.2","new_version":"15.5.10","repository_url":"https://github.com/vercel/next.js"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"base-x","old_version":"3.0.9","new_version":"3.0.11","repository_url":"https://github.com/cryptocoinjs/base-x"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"cipher-base","old_version":"1.0.4","new_version":"1.0.7","repository_url":"https://github.com/crypto-browserify/cipher-base"},{"name":"dottie","old_version":"2.0.6","new_version":"2.0.7","repository_url":"https://github.com/mickhansen/dottie.js"},{"name":"form-data","old_version":"4.0.0","new_version":"4.0.5","repository_url":"https://github.com/form-data/form-data"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"qs","old_version":"6.11.2","new_version":"6.15.0","repository_url":"https://github.com/ljharb/qs"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"tar-fs","old_version":"2.1.1","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"},{"name":"tar","old_version":"6.1.15","new_version":"6.2.1","repository_url":"https://github.com/isaacs/node-tar"},{"name":"undici","old_version":"5.28.3","new_version":"5.29.0","repository_url":"https://github.com/nodejs/undici"},{"name":"validator","old_version":"13.11.0","new_version":"13.15.26","repository_url":"https://github.com/validatorjs/validator.js"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 20 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [aws-sdk](https://github.com/aws/aws-sdk-js) | `2.1448.0` | `2.1693.0` |\n| [axios](https://github.com/axios/axios) | `1.5.0` | `1.13.5` |\n| [bn.js](https://github.com/indutny/bn.js) | `5.2.1` | `5.2.3` |\n| [fastify](https://github.com/fastify/fastify) | `4.22.0` | `5.7.3` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [next](https://github.com/vercel/next.js) | `13.4.2` | `15.5.10` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [base-x](https://github.com/cryptocoinjs/base-x) | `3.0.9` | `3.0.11` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [cipher-base](https://github.com/crypto-browserify/cipher-base) | `1.0.4` | `1.0.7` |\n| [dottie](https://github.com/mickhansen/dottie.js) | `2.0.6` | `2.0.7` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [qs](https://github.com/ljharb/qs) | `6.11.2` | `6.15.0` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.1` | `2.1.4` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.15` | `6.2.1` |\n| [undici](https://github.com/nodejs/undici) | `5.28.3` | `5.29.0` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.11.0` | `13.15.26` |\n\nBumps the npm_and_yarn group with 1 update in the /packages/account-postgres-sink-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/active-device-oracle directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/distributor-oracle directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/docsite directory: [next](https://github.com/vercel/next.js).\nBumps the npm_and_yarn group with 1 update in the /packages/fanout-metadata-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/faucet-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/metadata-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/migration-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/monitor-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/rewards-oracle-faucet-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/tokens-to-rent-service directory: [fastify](https://github.com/fastify/fastify).\nBumps the npm_and_yarn group with 1 update in the /packages/vsr-metadata-service directory: [fastify](https://github.com/fastify/fastify).\n\nUpdates `aws-sdk` from 2.1448.0 to 2.1693.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aws/aws-sdk-js/releases\"\u003eaws-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v2.1693.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1692.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1691.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1690.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1689.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1688.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1687.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1686.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1685.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1684.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1683.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1682.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1681.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1680.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1679.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1678.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003ch2\u003eRelease v2.1677.0\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/aws/aws-sdk-js/blob/master/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for more information.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/9d3c66eca8c4416a9d347d0703f27b65775d65ef\"\u003e\u003ccode\u003e9d3c66e\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1693.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c039567cee58b50a44f53f30318fa21f36c42ecc\"\u003e\u003ccode\u003ec039567\u003c/code\u003e\u003c/a\u003e test(client-elastictranscoder): remove feature test (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4711\"\u003e#4711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/f5b1a6f0aebb477204d979091d654649f29ad9ce\"\u003e\u003ccode\u003ef5b1a6f\u003c/code\u003e\u003c/a\u003e docs: end-of-support (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4706\"\u003e#4706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/657d6feb00447c8be1d65158a0ecc0585b70ed60\"\u003e\u003ccode\u003e657d6fe\u003c/code\u003e\u003c/a\u003e chore: use ssh private key for git sync (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4705\"\u003e#4705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c12585baeb9197158cd50975af66856617732aea\"\u003e\u003ccode\u003ec12585b\u003c/code\u003e\u003c/a\u003e chore: remove regression label management (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4699\"\u003e#4699\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/966fa6c316dbb11ca9277564ff7120e6b16467f4\"\u003e\u003ccode\u003e966fa6c\u003c/code\u003e\u003c/a\u003e Updates SDK to v2.1692.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/5d0e38adbbc1a3fd6e6bf7c48cd7e209e9eb0b5f\"\u003e\u003ccode\u003e5d0e38a\u003c/code\u003e\u003c/a\u003e Delete EC2 launch configuration e2e tests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4685\"\u003e#4685\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/b9ce3461a495dcf4f4a0be133e103d98130847a6\"\u003e\u003ccode\u003eb9ce346\u003c/code\u003e\u003c/a\u003e chore: fix issue config (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4683\"\u003e#4683\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/c06668172b233e0b2ded1afc48f0a11f6b79735c\"\u003e\u003ccode\u003ec066681\u003c/code\u003e\u003c/a\u003e Update issue template config and disable docs requests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-js/issues/4682\"\u003e#4682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-js/commit/163a7cfc86308e0b54245c04fb7b317bcd3893b0\"\u003e\u003ccode\u003e163a7cf\u003c/code\u003e\u003c/a\u003e Modified bug issue template to add checkbox to report potential regression. (...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-js/compare/v2.1448.0...v2.1693.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.5.0 to 1.13.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.5\u003c/h2\u003e\n\u003ch2\u003eRelease 1.13.5\u003c/h2\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fixed a potential \u003cstrong\u003eDenial of Service\u003c/strong\u003e issue involving the \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBug fix:\u003c/strong\u003e Resolved an issue where \u003ccode\u003eAxiosError\u003c/code\u003e could be missing the \u003ccode\u003estatus\u003c/code\u003e field on and after \u003cstrong\u003ev1.13.3\u003c/strong\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch4\u003eSecurity\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix Denial of Service via \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix/5657. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7313\"\u003e#7313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure \u003ccode\u003estatus\u003c/code\u003e is present in \u003ccode\u003eAxiosError\u003c/code\u003e on and after v1.13.3. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFeatures / Improvements\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAdd input validation to \u003ccode\u003eisAbsoluteURL\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRefactor: bump minor package versions. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7356\"\u003e#7356\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDocumentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eClarify object-check comment. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix deprecated \u003ccode\u003eBuffer\u003c/code\u003e constructor usage and README formatting. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCI / Maintenance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eChore: fix issues with YAML. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7355\"\u003e#7355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: update workflow YAMLs. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: fix run condition. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDev deps: bump \u003ccode\u003ekarma-sourcemap-loader\u003c/code\u003e from 0.3.8 to 0.4.0. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChore(release): prepare release 1.13.5. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sachin11063\"\u003e\u003ccode\u003e@​sachin11063\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/asmitha-16\"\u003e\u003ccode\u003e@​asmitha-16\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog:\u003c/strong\u003e \u003ca href=\"https://github.com/axios/axios/compare/v1.13.4...v1.13.5\"\u003ehttps://github.com/axios/axios/compare/v1.13.4...v1.13.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.13.4\u003c/h2\u003e\n\u003ch2\u003eOverview\u003c/h2\u003e\n\u003cp\u003eThe release addresses issues discovered in v1.13.3 and includes significant CI/CD improvements.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v1.13.3...v1.13.4\"\u003ev1.13.3...v1.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's New in v1.13.4\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix: issues with version 1.13.3\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7352\"\u003e#7352\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ee90dfc28abffbb61e24974b2bd3139a4a40ac76\"\u003eee90dfc\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixed issues discovered in v1.13.3 release\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7201) [#7201](https://github.com/axios/axios/issues/7201) )\"\u003ecodenomnom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Nandann018-ux\" title=\"+60/-10 ([#7272](https://github.com/axios/axios/issues/7272) )\"\u003eNandan Acharya\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/KernelDeimos\" title=\"+22/-40 ([#7042](https://github.com/axios/axios/issues/7042) )\"\u003eEric Dubé\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/tiborpilz\" title=\"+40/-4 ([#5551](https://github.com/axios/axios/issues/5551) )\"\u003eTibor Pilz\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/joaoGabriel55\" title=\"+31/-4 ([#6314](https://github.com/axios/axios/issues/6314) )\"\u003eGabriel Quaresma\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/turadg\" title=\"+23/-6 ([#6265](https://github.com/axios/axios/issues/6265) )\"\u003eTuradg Aleahmad\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/29f75425f0c9f73021f5eedc869c176e30e05fe7\"\u003e\u003ccode\u003e29f7542\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.13.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/431c3a361490a2e3d5ac5d9e08d66d4bb5f3cd2a\"\u003e\u003ccode\u003e431c3a3\u003c/code\u003e\u003c/a\u003e ci: fix run condition (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9ff3a78ad72ecd665a4b673686f1517d824284bf\"\u003e\u003ccode\u003e9ff3a78\u003c/code\u003e\u003c/a\u003e ci: update ymls (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/265b71234c20fabbd6d691858c65a7e9c978659f\"\u003e\u003ccode\u003e265b712\u003c/code\u003e\u003c/a\u003e docs: fix deprecated Buffer constructor and formatting issues in README (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/475e75a260668d227aec9f77735a49748c9041ff\"\u003e\u003ccode\u003e475e75a\u003c/code\u003e\u003c/a\u003e feat: add input validation to isAbsoluteURL (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57\"\u003e\u003ccode\u003e28c7215\u003c/code\u003e\u003c/a\u003e fix: Denial of Service via \u003cstrong\u003eproto\u003c/strong\u003e Key in mergeConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/04cf01969ed58f96920da032f340bfe4614aab90\"\u003e\u003ccode\u003e04cf019\u003c/code\u003e\u003c/a\u003e docs: clarify object check comment (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/696fa753c5366afbd21859c294c64c9ff2b359ab\"\u003e\u003ccode\u003e696fa75\u003c/code\u003e\u003c/a\u003e fix: status is missing in AxiosError on and after v1.13.3 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/569f028a5878faaec8d7d138ba686aac407bda4c\"\u003e\u003ccode\u003e569f028\u003c/code\u003e\u003c/a\u003e fix: added a option to choose between legacy and the new request/response int...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/44b7c9f0c4900fd8784f18e871199402f07fc69f\"\u003e\u003ccode\u003e44b7c9f\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump karma-sourcemap-loader (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.5.0...v1.13.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `bn.js` from 5.2.1 to 5.2.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/indutny/bn.js/blob/master/CHANGELOG.md\"\u003ebn.js's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.2.3 / 2026-02-19\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.2 / 2025-04-25\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/ea6c072a951493ca99e5cd5f8da3851b90116271\"\u003e\u003ccode\u003eea6c072\u003c/code\u003e\u003c/a\u003e 5.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/33df26b5771e824f303a79ec6407409376baa64b\"\u003e\u003ccode\u003e33df26b\u003c/code\u003e\u003c/a\u003e fix imaskn state (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/317\"\u003e#317\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/6db7c3818569423b94ebcf2bdff90fcfb9c47f6d\"\u003e\u003ccode\u003e6db7c38\u003c/code\u003e\u003c/a\u003e 5.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/c7e1a532566c83fd0297ff7669c227b824928bf4\"\u003e\u003ccode\u003ec7e1a53\u003c/code\u003e\u003c/a\u003e Fix imuln/muln with zero (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/313\"\u003e#313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/4cc0bfa5195d54876a6b807827e582522c813019\"\u003e\u003ccode\u003e4cc0bfa\u003c/code\u003e\u003c/a\u003e docs: mention the max plain JS number argument value (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/307\"\u003e#307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/indutny/bn.js/commit/5df40f81ea8afb835b909bb7c21e0833cdeb6a30\"\u003e\u003ccode\u003e5df40f8\u003c/code\u003e\u003c/a\u003e Document \u003ccode\u003elength\u003c/code\u003e unit in \u003ccode\u003etoBuffer(...)\u003c/code\u003e input (\u003ca href=\"https://redirect.github.com/indutny/bn.js/issues/299\"\u003e#299\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/indutny/bn.js/compare/v5.2.1...v5.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `fastify` from 4.22.0 to 5.7.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fastify/releases\"\u003efastify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.7.3\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c\"\u003ehttps://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c\u003c/a\u003e \u003ccode\u003eCVE-2026-25224\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update Reply.send() documentation for string serialization by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6466\"\u003efastify/fastify#6466\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: ignore agents config files by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6474\"\u003efastify/fastify#6474\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update vulnerability reporting to use GitHub Security by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6475\"\u003efastify/fastify#6475\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.2...v5.7.3\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.2...v5.7.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.2\u003c/h2\u003e\n\u003ch2\u003e⚠️ Notice ⚠️\u003c/h2\u003e\n\u003cp\u003eParsing of the \u003ccode\u003econtent-type\u003c/code\u003e header has been improved to a strict parser in PR \u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6414\"\u003e#6414\u003c/a\u003e. This means only header values in the form described in \u003ca href=\"https://httpwg.org/specs/rfc9110.html#field.content-type\"\u003eRFC 9110\u003c/a\u003e are accepted.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: npm ignore AI related files by \u003ca href=\"https://github.com/climba03003\"\u003e\u003ccode\u003e@​climba03003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6447\"\u003efastify/fastify#6447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update sponsor url by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6450\"\u003efastify/fastify#6450\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add fastify-http-exceptions to Ecosystem.md by \u003ca href=\"https://github.com/bhouston\"\u003e\u003ccode\u003e@​bhouston\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6442\"\u003efastify/fastify#6442\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix invalid shorten form schema example by \u003ca href=\"https://github.com/climba03003\"\u003e\u003ccode\u003e@​climba03003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6448\"\u003efastify/fastify#6448\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Simplify and tighten decorators example by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6451\"\u003efastify/fastify#6451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Fix incorrect variable use by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6455\"\u003efastify/fastify#6455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update sponsor link by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6460\"\u003efastify/fastify#6460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Fix MIT Licence file to conform to standard by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6464\"\u003efastify/fastify#6464\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: move querystringParser option under routerOptions by \u003ca href=\"https://github.com/inyourtime\"\u003e\u003ccode\u003e@​inyourtime\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6463\"\u003efastify/fastify#6463\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Updated content-type header parsing by \u003ca href=\"https://github.com/jsumners\"\u003e\u003ccode\u003e@​jsumners\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6414\"\u003efastify/fastify#6414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bhouston\"\u003e\u003ccode\u003e@​bhouston\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6442\"\u003efastify/fastify#6442\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.1...v5.7.2\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.1...v5.7.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Bump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6434\"\u003efastify/fastify#6434\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: updated version in the fastify.js by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6446\"\u003efastify/fastify#6446\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.0...v5.7.1\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.0...v5.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: Improved firebase serverless guide about process remaining stuck by \u003ca href=\"https://github.com/alexandercerutti\"\u003e\u003ccode\u003e@​alexandercerutti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6380\"\u003efastify/fastify#6380\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update migration guide with date-time breaking change by \u003ca href=\"https://github.com/craftsman01\"\u003e\u003ccode\u003e@​craftsman01\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6110\"\u003efastify/fastify#6110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove test file by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6384\"\u003efastify/fastify#6384\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: speed up loading with custom compiler by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6383\"\u003efastify/fastify#6383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: replace all instances of twitter.com with x.com by \u003ca href=\"https://github.com/cseas\"\u003e\u003ccode\u003e@​cseas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6355\"\u003efastify/fastify#6355\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/49468eddb7c59e07fb95183afbf03498fccac99e\"\u003e\u003ccode\u003e49468ed\u003c/code\u003e\u003c/a\u003e Bumped v5.7.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/eb11156396f6a5fedaceed0140aed2b7f026be37\"\u003e\u003ccode\u003eeb11156\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/d98ce2a0c030e18d27d93ed000788f95944ed910\"\u003e\u003ccode\u003ed98ce2a\u003c/code\u003e\u003c/a\u003e docs: update vulnerability reporting to use GitHub Security (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6475\"\u003e#6475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/17172c40506604fd15f8e5f17299b671d4b58686\"\u003e\u003ccode\u003e17172c4\u003c/code\u003e\u003c/a\u003e Ignore agents config files (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6474\"\u003e#6474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/b48826f07beaa925809c5e347d67a7e2502eb156\"\u003e\u003ccode\u003eb48826f\u003c/code\u003e\u003c/a\u003e docs: update Reply.send() documentation for string serialization (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6466\"\u003e#6466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/e1e4fe75910c36e1b9ebb87026ca16c053a9c1f2\"\u003e\u003ccode\u003ee1e4fe7\u003c/code\u003e\u003c/a\u003e v5.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/32d7b6add39ddf082d92579a58bea7018c5ac821\"\u003e\u003ccode\u003e32d7b6a\u003c/code\u003e\u003c/a\u003e chore: Updated content-type header parsing (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6414\"\u003e#6414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/f4a6ac1d0321e9f1757c165a2d423ccbefe7c9c9\"\u003e\u003ccode\u003ef4a6ac1\u003c/code\u003e\u003c/a\u003e docs: move querystringParser example under routerOptions (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6463\"\u003e#6463\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/2af83d64b53a0a786141d93edb9ffefac8b6446a\"\u003e\u003ccode\u003e2af83d6\u003c/code\u003e\u003c/a\u003e fix: Fix MIT Licence file to conform to standard (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6464\"\u003e#6464\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/5c14e05670c80455b99286ee0b6eac05eabec831\"\u003e\u003ccode\u003e5c14e05\u003c/code\u003e\u003c/a\u003e chore: update sponsor link (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6460\"\u003e#6460\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fastify/compare/v4.22.0...v5.7.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `next` from 13.4.2 to 15.5.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vercel/next.js/releases\"\u003enext's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev15.5.10\u003c/h2\u003e\n\u003cp\u003ePlease refer the following changelogs for more information about this security release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://vercel.com/changelog/summaries-of-cve-2025-59471-and-cve-2025-59472\"\u003ehttps://vercel.com/changelog/summaries-of-cve-2025-59471-and-cve-2025-59472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003ehttps://vercel.com/changelog/summary-of-cve-2026-23864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev15.4.11\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.3.9\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.2.9\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.1.12\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003ch2\u003ev15.0.8\u003c/h2\u003e\n\u003cp\u003ePlease see this \u003ca href=\"https://vercel.com/changelog/summary-of-cve-2026-23864\"\u003echangelog\u003c/a\u003e for more information about this security patch.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/60a2aa97b6692d3a56e483f0ff93febaf6f33fd6\"\u003e\u003ccode\u003e60a2aa9\u003c/code\u003e\u003c/a\u003e v15.5.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/e5b834d208fe0edf64aa26b5d76dcf6a176500ec\"\u003e\u003ccode\u003ee5b834d\u003c/code\u003e\u003c/a\u003e fetch(next/image): reduce maximumResponseBody from 300MB to 50MB (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/88588\"\u003e#88588\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/39a2f6a8d13dfa50cee843f93241c8c1dbaf801e\"\u003e\u003ccode\u003e39a2f6a\u003c/code\u003e\u003c/a\u003e feat(next/image)!: add \u003ccode\u003eimages.maximumResponseBody\u003c/code\u003e config (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/88183\"\u003e#88183\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/bf9f0843edab3a7cf9d4c85b315bc33c87b282ce\"\u003e\u003ccode\u003ebf9f084\u003c/code\u003e\u003c/a\u003e Sync DoS mitigations for React Flight\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/c5de33e93ccccaf3bee60cf50603e2152f9886e1\"\u003e\u003ccode\u003ec5de33e\u003c/code\u003e\u003c/a\u003e v15.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/dd233994aeb24e906cdb9aedca5447cdef401792\"\u003e\u003ccode\u003edd23399\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/facebook/react/issues/35351\"\u003efacebook/react#35351\u003c/a\u003e for 15.5.8 (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/87086\"\u003e#87086\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/7526cd6f24300726964eaba78927fe2a9c3fed5e\"\u003e\u003ccode\u003e7526cd6\u003c/code\u003e\u003c/a\u003e v15.5.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/1e9ec4133af3657964833bfcc9abb0ee73fb19f0\"\u003e\u003ccode\u003e1e9ec41\u003c/code\u003e\u003c/a\u003e Update React Version (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/41\"\u003e#41\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/16141e5df9ce51136ba42988b574981f89d01081\"\u003e\u003ccode\u003e16141e5\u003c/code\u003e\u003c/a\u003e Update React Version (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/30\"\u003e#30\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vercel/next.js/commit/e01e589e181d66d48c57698238b8b7f59218dfef\"\u003e\u003ccode\u003ee01e589\u003c/code\u003e\u003c/a\u003e Backport Next.js changes to v15.5.8 (\u003ca href=\"https://redirect.github.com/vercel/next.js/issues/23\"\u003e#23\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vercel/next.js/compare/v13.4.2...v15.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `base-x` from 3.0.9 to 3.0.11\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/043a888a9bae09bc4b40500e37792e2c6398e9f2\"\u003e\u003ccode\u003e043a888\u003c/code\u003e\u003c/a\u003e 3.0.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/2705dddd2565b455641985974b534291d8defb31\"\u003e\u003ccode\u003e2705ddd\u003c/code\u003e\u003c/a\u003e [backport 3.x] Prohibit char codes that would overflow the \u003ccode\u003eBASE_MAP\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/3d43c0e16bfbc045a0a8bb6423e6e336df81b512\"\u003e\u003ccode\u003e3d43c0e\u003c/code\u003e\u003c/a\u003e 3.0.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/0a3544695fa6800649a8b78ed46cece61bcdbbe5\"\u003e\u003ccode\u003e0a35446\u003c/code\u003e\u003c/a\u003e Improve decoding performance\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/cryptocoinjs/base-x/compare/v3.0.9...v3.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cipher-base` from 1.0.4 to 1.0.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/browserify/cipher-base/blob/master/CHANGELOG.md\"\u003ecipher-base's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.6...v1.0.7\"\u003ev1.0.7\u003c/a\u003e - 2025-09-24\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003eto-buffer\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/fd1e5eeafccbc8eaa827ee6b9b60c14608aa784f\"\u003e\u003ccode\u003efd1e5ee\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/08ba8034223a53d300b7dccf33d8f14e52379a34\"\u003e\u003ccode\u003e08ba803\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.5...v1.0.6\"\u003ev1.0.6\u003c/a\u003e - 2024-11-26\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] io.js 3.0 - Node.js 5.3 typed array support \u003ca href=\"https://github.com/browserify/cipher-base/commit/b7ddd2ac24e65cc47befc1e0eb5026422f8ab037\"\u003e\u003ccode\u003eb7ddd2a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.4...v1.0.5\"\u003ev1.0.5\u003c/a\u003e - 2024-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] standard -\u0026gt; eslint, make test dir, etc \u003ca href=\"https://github.com/browserify/cipher-base/commit/ae02fd6624c41ac4ac18077be797111d1955bc76\"\u003e\u003ccode\u003eae02fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] migrate from travis to GHA \u003ca href=\"https://github.com/browserify/cipher-base/commit/66387d71461287ad9067bb1bcbfdc47403a33ee7\"\u003e\u003ccode\u003e66387d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix package.json indentation \u003ca href=\"https://github.com/browserify/cipher-base/commit/5c02918ac58c875ed36913c2dc3e1043f4d1c99c\"\u003e\u003ccode\u003e5c02918\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] return valid values on multi-byte-wide TypedArray input \u003ca href=\"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294\"\u003e\u003ccode\u003e8fd1364\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/88dc806806d3dc41444dbf639c87c00f82c949b3\"\u003e\u003ccode\u003e88dc806\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003enpmignore\u003c/code\u003e and \u003ccode\u003esafe-publish-latest\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/7a137d749ce7ea7ea56b9c096844b1b8ab723f61\"\u003e\u003ccode\u003e7a137d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly apps should have lockfiles \u003ca href=\"https://github.com/browserify/cipher-base/commit/42528f291db16bf2e7d5f831ebe2ad87fd0b1f42\"\u003e\u003ccode\u003e42528f2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003einherits\u003c/code\u003e, \u003ccode\u003esafe-buffer\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/0e7a2d9a33a391e82fa9cf512d6e25cc91ab8613\"\u003e\u003ccode\u003e0e7a2d9\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add missing \u003ccode\u003eengines.node\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/f2dc13e47bbcf3c873db9a9e0f83e5f29d0783fe\"\u003e\u003ccode\u003ef2dc13e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/00567180c846dd3db3848c9223991c58a0d5490c\"\u003e\u003ccode\u003e0056718\u003c/code\u003e\u003c/a\u003e v1.0.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/fd1e5eeafccbc8eaa827ee6b9b60c14608aa784f\"\u003e\u003ccode\u003efd1e5ee\u003c/code\u003e\u003c/a\u003e [Refactor] use \u003ccode\u003eto-buffer\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/08ba8034223a53d300b7dccf33d8f14e52379a34\"\u003e\u003ccode\u003e08ba803\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/f5249f94611506ef35a8be4d48a3fc5ecf1fac63\"\u003e\u003ccode\u003ef5249f9\u003c/code\u003e\u003c/a\u003e v1.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/b7ddd2ac24e65cc47befc1e0eb5026422f8ab037\"\u003e\u003ccode\u003eb7ddd2a\u003c/code\u003e\u003c/a\u003e [Fix] io.js 3.0 - Node.js 5.3 typed array support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/f03cebfdad1cba1d56614c58affa303b0fa2a43e\"\u003e\u003ccode\u003ef03cebf\u003c/code\u003e\u003c/a\u003e v1.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/88dc806806d3dc41444dbf639c87c00f82c949b3\"\u003e\u003ccode\u003e88dc806\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/7a137d749ce7ea7ea56b9c096844b1b8ab723f61\"\u003e\u003ccode\u003e7a137d7\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003enpmignore\u003c/code\u003e and \u003ccode\u003esafe-publish-latest\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/5c02918ac58c875ed36913c2dc3e1043f4d1c99c\"\u003e\u003ccode\u003e5c02918\u003c/code\u003e\u003c/a\u003e [meta] fix package.json indentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294\"\u003e\u003ccode\u003e8fd1364\u003c/code\u003e\u003c/a\u003e [Fix] return valid values on multi-byte-wide TypedArray input\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/crypto-browserify/cipher-base/compare/v1.0.4...v1.0.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for cipher-base since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dottie` from 2.0.6 to 2.0.7\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mickhansen/dottie.js/commit/334c32b80ed536522b567ee6a844caf8e5fef9c3\"\u003e\u003ccode\u003e334c32b\u003c/code\u003e\u003c/a\u003e 2.0.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mickhansen/dottie.js/commit/7e8fa1345a4b46325f0eab8d7aeb1c4deaefdb14\"\u003e\u003ccode\u003e7e8fa13\u003c/code\u003e\u003c/a\u003e fix: check all path segments for dangerous keys (bypass of CVE-2023-2… (\u003ca href=\"https://redirect.github.com/mickhansen/dottie.js/issues/43\"\u003e#43\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mickhansen/dottie.js/commit/a72eb993212939d60a2801843ce3e968dfc5c6a6\"\u003e\u003ccode\u003ea72eb99\u003c/code\u003e\u003c/a\u003e Update test GitHub Action (\u003ca href=\"https://redirect.github.com/mickhansen/dottie.js/issues/40\"\u003e#40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mickhansen/dottie.js/compare/v2.0.6...v2.0.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 4.0.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.4...v4.0.5\"\u003ev4.0.5\u003c/a\u003e - 2025-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] Switch to newer v8 prediction library; enable node 24 testing \u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c90856375e498793c7\"\u003e\u003ccode\u003e5822467\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set Symbol.toStringTag in the proper place \u003ca href=\"https://github.com/form-data/form-data/commit/76d0dee43933b5e167f7f09e5d9cbbd1cf911aa7\"\u003e\u003ccode\u003e76d0dee\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/68ff7dda8834d6de095a7008cef0e03bc252ca98\"\u003e\u003ccode\u003e68ff7dd\u003c/code\u003e\u003c/a\u003e v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c90856375e498793c7\"\u003e\u003ccode\u003e5822467\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/76d0dee43933b5e167f7f09e5d9cbbd1cf911aa7\"\u003e\u003ccode\u003e76d0dee\u003c/code\u003e\u003c/a\u003e [Fix] set Symbol.toStringTag in the proper place\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e [Tests] Switch to newer v8 prediction library; enable node 24 testing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/41996f5ac73a867046d48512cab62e64fc846dad\"\u003e\u003ccode\u003e41996f5\u003c/code\u003e\u003c/a\u003e v4.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e [meta] actually ensure the readme backup isn’t published\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e [meta] fix readme capitalization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e [Tests] fix linting errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e [Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.0...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for form-data since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 2.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `js-yaml` from 3.14.1 to 3.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md\"\u003ejs-yaml's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[3.14.2] - 2025-11-15\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBackported v4.1.1 fix to v3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.1] - 2025-11-12\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix prototype pollution issue in yaml merge (\u0026lt;\u0026lt;) operator.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.1.0] - 2021-04-15\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypes are now exported as \u003ccode\u003eyaml.types.XXX\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eEvery type now has \u003ccode\u003eoptions\u003c/code\u003e property with original arguments kept as they were\n(see \u003ccode\u003eyaml.types.int.options\u003c/code\u003e as an example).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSchema.extend()\u003c/code\u003e now keeps old type order in case of conflicts\n(e.g. Schema.extend([ a, b, c ]).extend([ b, a, d ]) is now ordered as \u003ccode\u003eabcd\u003c/code\u003e instead of \u003ccode\u003ecbad\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[4.0.0] - 2021-01-03\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCheck \u003ca href=\"https://github.com/nodeca/js-yaml/blob/master/migrate_v3_to_v4.md\"\u003emigration guide\u003c/a\u003e to see details for all breaking changes.\u003c/li\u003e\n\u003cli\u003eBreaking: \u0026quot;unsafe\u0026quot; tags \u003ccode\u003e!!js/function\u003c/code\u003e, \u003ccode\u003e!!js/regexp\u003c/code\u003e, \u003ccode\u003e!!js/undefined\u003c/code\u003e are\nmoved to \u003ca href=\"h...\n\n_Description has been truncated_","html_url":"https://github.com/JoftheV/helium-program-library/pull/10","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/JoftheV%2Fhelium-program-library/issues/10","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-02-25T23:11:32.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"3992317926","node_id":"PR_kwDOOMz7fs7GYJvw","number":11,"state":"closed","title":"Bump the npm_and_yarn group across 7 directories with 31 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-26T05:42:15.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-25T23:11:32.000Z","updated_at":"2026-02-26T05:42:16.000Z","time_to_close":23443,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":31,"packages":[{"name":"fastify","old_version":"4.17.0","new_version":"5.7.3","repository_url":"https://github.com/fastify/fastify"},{"name":"form-data","old_version":"4.0.0","new_version":"4.0.5","repository_url":"https://github.com/form-data/form-data"},{"name":"esbuild","old_version":"0.15.18","new_version":"0.27.3","repository_url":"https://github.com/evanw/esbuild"},{"name":"qs","old_version":"6.13.1","new_version":"6.14.2","repository_url":"https://github.com/ljharb/qs"},{"name":"brace-expansion","old_version":"2.0.1","new_version":"2.0.2","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"node-forge","old_version":"1.3.1","new_version":"1.3.3","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"tar","old_version":"6.1.14","new_version":"removed","repository_url":"https://github.com/isaacs/node-tar"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 10 updates in the /image.pollinations.ai directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [fastify](https://github.com/fastify/fastify) | `4.17.0` | `5.7.3` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.15.18` | `0.27.3` |\n| [qs](https://github.com/ljharb/qs) | `6.13.1` | `6.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.14` | `removed` |\n\nBumps the npm_and_yarn group with 2 updates in the /image.pollinations.ai/cloudflare-cache directory: [esbuild](https://github.com/evanw/esbuild) and [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler).\nBumps the npm_and_yarn group with 3 updates in the /pollinations-react directory: [esbuild](https://github.com/evanw/esbuild), [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) and [diff](https://github.com/kpdecker/jsdiff).\nBumps the npm_and_yarn group with 9 updates in the /pollinations-react/docs directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [glob](https://github.com/isaacs/node-glob) | `10.3.10` | `10.5.0` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [next](https://github.com/vercel/next.js) | `14.2.11` | `15.5.10` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [prismjs](https://github.com/PrismJS/prism) | `1.27.0` | `1.30.0` |\n\nBumps the npm_and_yarn group with 14 updates in the /pollinations.ai directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [form-data](https://github.com/form-data/form-data) | `3.0.2` | `3.0.4` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) | `2.0.7` | `2.0.9` |\n| [on-headers](https://github.com/jshttp/on-headers) | `1.0.2` | `1.1.0` |\n| [react-router](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router) | `6.28.1` | `6.30.3` |\n| [webpack](https://github.com/webpack/webpack) | `5.97.1` | `5.105.2` |\n\nBumps the npm_and_yarn group with 13 updates in the /text.pollinations.ai directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.1` | `3.5.4` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `9.0.5` | `9.0.8` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.9` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [axios](https://github.com/axios/axios) | `1.7.7` | `1.13.5` |\n| [basic-ftp](https://github.com/patrickjuchli/basic-ftp) | `5.0.5` | `5.2.0` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `3.0.6` | `3.1.1` |\n\nBumps the npm_and_yarn group with 2 updates in the /text.pollinations.ai/cloudflare-cache directory: [esbuild](https://github.com/evanw/esbuild) and [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler).\n\nUpdates `fastify` from 4.17.0 to 5.7.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fastify/releases\"\u003efastify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.7.3\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c\"\u003ehttps://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c\u003c/a\u003e \u003ccode\u003eCVE-2026-25224\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update Reply.send() documentation for string serialization by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6466\"\u003efastify/fastify#6466\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: ignore agents config files by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6474\"\u003efastify/fastify#6474\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update vulnerability reporting to use GitHub Security by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6475\"\u003efastify/fastify#6475\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.2...v5.7.3\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.2...v5.7.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.2\u003c/h2\u003e\n\u003ch2\u003e⚠️ Notice ⚠️\u003c/h2\u003e\n\u003cp\u003eParsing of the \u003ccode\u003econtent-type\u003c/code\u003e header has been improved to a strict parser in PR \u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6414\"\u003e#6414\u003c/a\u003e. This means only header values in the form described in \u003ca href=\"https://httpwg.org/specs/rfc9110.html#field.content-type\"\u003eRFC 9110\u003c/a\u003e are accepted.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: npm ignore AI related files by \u003ca href=\"https://github.com/climba03003\"\u003e\u003ccode\u003e@​climba03003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6447\"\u003efastify/fastify#6447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update sponsor url by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6450\"\u003efastify/fastify#6450\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add fastify-http-exceptions to Ecosystem.md by \u003ca href=\"https://github.com/bhouston\"\u003e\u003ccode\u003e@​bhouston\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6442\"\u003efastify/fastify#6442\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix invalid shorten form schema example by \u003ca href=\"https://github.com/climba03003\"\u003e\u003ccode\u003e@​climba03003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6448\"\u003efastify/fastify#6448\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Simplify and tighten decorators example by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6451\"\u003efastify/fastify#6451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Fix incorrect variable use by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6455\"\u003efastify/fastify#6455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update sponsor link by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6460\"\u003efastify/fastify#6460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Fix MIT Licence file to conform to standard by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6464\"\u003efastify/fastify#6464\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: move querystringParser option under routerOptions by \u003ca href=\"https://github.com/inyourtime\"\u003e\u003ccode\u003e@​inyourtime\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6463\"\u003efastify/fastify#6463\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Updated content-type header parsing by \u003ca href=\"https://github.com/jsumners\"\u003e\u003ccode\u003e@​jsumners\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6414\"\u003efastify/fastify#6414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bhouston\"\u003e\u003ccode\u003e@​bhouston\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6442\"\u003efastify/fastify#6442\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.1...v5.7.2\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.1...v5.7.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Bump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6434\"\u003efastify/fastify#6434\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: updated version in the fastify.js by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6446\"\u003efastify/fastify#6446\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.0...v5.7.1\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.0...v5.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: Improved firebase serverless guide about process remaining stuck by \u003ca href=\"https://github.com/alexandercerutti\"\u003e\u003ccode\u003e@​alexandercerutti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6380\"\u003efastify/fastify#6380\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update migration guide with date-time breaking change by \u003ca href=\"https://github.com/craftsman01\"\u003e\u003ccode\u003e@​craftsman01\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6110\"\u003efastify/fastify#6110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove test file by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6384\"\u003efastify/fastify#6384\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: speed up loading with custom compiler by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6383\"\u003efastify/fastify#6383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: replace all instances of twitter.com with x.com by \u003ca href=\"https://github.com/cseas\"\u003e\u003ccode\u003e@​cseas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6355\"\u003efastify/fastify#6355\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/49468eddb7c59e07fb95183afbf03498fccac99e\"\u003e\u003ccode\u003e49468ed\u003c/code\u003e\u003c/a\u003e Bumped v5.7.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/eb11156396f6a5fedaceed0140aed2b7f026be37\"\u003e\u003ccode\u003eeb11156\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/d98ce2a0c030e18d27d93ed000788f95944ed910\"\u003e\u003ccode\u003ed98ce2a\u003c/code\u003e\u003c/a\u003e docs: update vulnerability reporting to use GitHub Security (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6475\"\u003e#6475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/17172c40506604fd15f8e5f17299b671d4b58686\"\u003e\u003ccode\u003e17172c4\u003c/code\u003e\u003c/a\u003e Ignore agents config files (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6474\"\u003e#6474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/b48826f07beaa925809c5e347d67a7e2502eb156\"\u003e\u003ccode\u003eb48826f\u003c/code\u003e\u003c/a\u003e docs: update Reply.send() documentation for string serialization (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6466\"\u003e#6466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/e1e4fe75910c36e1b9ebb87026ca16c053a9c1f2\"\u003e\u003ccode\u003ee1e4fe7\u003c/code\u003e\u003c/a\u003e v5.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/32d7b6add39ddf082d92579a58bea7018c5ac821\"\u003e\u003ccode\u003e32d7b6a\u003c/code\u003e\u003c/a\u003e chore: Updated content-type header parsing (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6414\"\u003e#6414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/f4a6ac1d0321e9f1757c165a2d423ccbefe7c9c9\"\u003e\u003ccode\u003ef4a6ac1\u003c/code\u003e\u003c/a\u003e docs: move querystringParser example under routerOptions (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6463\"\u003e#6463\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/2af83d64b53a0a786141d93edb9ffefac8b6446a\"\u003e\u003ccode\u003e2af83d6\u003c/code\u003e\u003c/a\u003e fix: Fix MIT Licence file to conform to standard (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6464\"\u003e#6464\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/5c14e05670c80455b99286ee0b6eac05eabec831\"\u003e\u003ccode\u003e5c14e05\u003c/code\u003e\u003c/a\u003e chore: update sponsor link (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6460\"\u003e#6460\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fastify/compare/4.17.0...v5.7.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 4.0.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.4...v4.0.5\"\u003ev4.0.5\u003c/a\u003e - 2025-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] Switch to newer v8 prediction library; enable node 24 testing \u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c90856375e498793c7\"\u003e\u003ccode\u003e5822467\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set Symbol.toStringTag in the proper place \u003ca href=\"https://github.com/form-data/form-data/commit/76d0dee43933b5e167f7f09e5d9cbbd1cf911aa7\"\u003e\u003ccode\u003e76d0dee\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/68ff7dda8834d6de095a7008cef0e03bc252ca98\"\u003e\u003ccode\u003e68ff7dd\u003c/code\u003e\u003c/a\u003e v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c90856375e498793c7\"\u003e\u003ccode\u003e5822467\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/76d0dee43933b5e167f7f09e5d9cbbd1cf911aa7\"\u003e\u003ccode\u003e76d0dee\u003c/code\u003e\u003c/a\u003e [Fix] set Symbol.toStringTag in the proper place\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e [Tests] Switch to newer v8 prediction library; enable node 24 testing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/41996f5ac73a867046d48512cab62e64fc846dad\"\u003e\u003ccode\u003e41996f5\u003c/code\u003e\u003c/a\u003e v4.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e [meta] actually ensure the readme backup isn’t published\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e [meta] fix readme capitalization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e [Tests] fix linting errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e [Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.0...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for form-data since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `esbuild` from 0.15.18 to 0.27.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/releases\"\u003eesbuild's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.27.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ePreserve URL fragments in data URLs (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4370\"\u003e#4370\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eConsider the following HTML, CSS, and SVG:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eindex.html\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"html\"\u003e\u003ccode\u003e\u0026lt;!DOCTYPE html\u0026gt;\n\u0026lt;html\u0026gt;\n  \u0026lt;head\u0026gt;\u0026lt;link rel=\u0026quot;stylesheet\u0026quot; href=\u0026quot;icons.css\u0026quot;\u0026gt;\u0026lt;/head\u0026gt;\n  \u0026lt;body\u0026gt;\u0026lt;div class=\u0026quot;triangle\u0026quot;\u0026gt;\u0026lt;/div\u0026gt;\u0026lt;/body\u0026gt;\n\u0026lt;/html\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eicons.css\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e.triangle {\n  width: 10px;\n  height: 10px;\n  background: currentColor;\n  clip-path: url(./triangle.svg#x);\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003etriangle.svg\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"xml\"\u003e\u003ccode\u003e\u0026lt;svg xmlns=\u0026quot;http://www.w3.org/2000/svg\u0026quot;\u0026gt;\n  \u0026lt;defs\u0026gt;\n    \u0026lt;clipPath id=\u0026quot;x\u0026quot;\u0026gt;\n      \u0026lt;path d=\u0026quot;M0 0H10V10Z\u0026quot;/\u0026gt;\n    \u0026lt;/clipPath\u0026gt;\n  \u0026lt;/defs\u0026gt;\n\u0026lt;/svg\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThe CSS uses a URL fragment (the \u003ccode\u003e#x\u003c/code\u003e) to reference the \u003ccode\u003eclipPath\u003c/code\u003e element in the SVG file. Previously esbuild's CSS bundler didn't preserve the URL fragment when bundling the SVG using the \u003ccode\u003edataurl\u003c/code\u003e loader, which broke the bundled CSS. With this release, esbuild will now preserve the URL fragment in the bundled CSS:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e/* icons.css */\n.triangle {\n  width: 10px;\n  height: 10px;\n  background: currentColor;\n  clip-path: url('data:image/svg+xml,\u0026lt;svg xmlns=\u0026quot;http://www.w3.org/2000/svg\u0026quot;\u0026gt;\u0026lt;defs\u0026gt;\u0026lt;clipPath id=\u0026quot;x\u0026quot;\u0026gt;\u0026lt;path d=\u0026quot;M0 0H10V10Z\u0026quot;/\u0026gt;\u0026lt;/clipPath\u0026gt;\u0026lt;/defs\u0026gt;\u0026lt;/svg\u0026gt;#x');\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/blob/main/CHANGELOG-2022.md\"\u003eesbuild's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog: 2022\u003c/h1\u003e\n\u003cp\u003eThis changelog documents all esbuild versions published in the year 2022 (versions 0.14.11 through 0.16.12).\u003c/p\u003e\n\u003ch2\u003e0.16.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eLoader defaults to \u003ccode\u003ejs\u003c/code\u003e for extensionless files (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/2776\"\u003e#2776\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eCertain packages contain files without an extension. For example, the \u003ccode\u003eyargs\u003c/code\u003e package contains the file \u003ccode\u003eyargs/yargs\u003c/code\u003e which has no extension. Node, Webpack, and Parcel can all understand code that imports \u003ccode\u003eyargs/yargs\u003c/code\u003e because they assume that the file is JavaScript. However, esbuild was previously unable to understand this code because it relies on the file extension to tell it how to interpret the file. With this release, esbuild will now assume files without an extension are JavaScript files. This can be customized by setting the loader for \u003ccode\u003e\u0026quot;\u0026quot;\u003c/code\u003e (the empty string, representing files without an extension) to another loader. For example, if you want files without an extension to be treated as CSS instead, you can do that like this:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eCLI:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003eesbuild --bundle --loader:=css\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJS:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eesbuild.build({\n  bundle: true,\n  loader: { '': 'css' },\n})\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eGo:\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eapi.Build(api.BuildOptions{\n  Bundle: true,\n  Loader: map[string]api.Loader{\u0026quot;\u0026quot;: api.LoaderCSS},\n})\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn addition, the \u003ccode\u003e\u0026quot;type\u0026quot;\u003c/code\u003e field in \u003ccode\u003epackage.json\u003c/code\u003e files now only applies to files with an explicit \u003ccode\u003e.js\u003c/code\u003e, \u003ccode\u003e.jsx\u003c/code\u003e, \u003ccode\u003e.ts\u003c/code\u003e, or \u003ccode\u003e.tsx\u003c/code\u003e extension. Previously it was incorrectly applied by esbuild to all files that had an extension other than \u003ccode\u003e.mjs\u003c/code\u003e, \u003ccode\u003e.mts\u003c/code\u003e, \u003ccode\u003e.cjs\u003c/code\u003e, or \u003ccode\u003e.cts\u003c/code\u003e including extensionless files. So for example an extensionless file in a \u003ccode\u003e\u0026quot;type\u0026quot;: \u0026quot;module\u0026quot;\u003c/code\u003e package is now treated as CommonJS instead of ESM.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.16.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAvoid a syntax error in the presence of direct \u003ccode\u003eeval\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/2761\"\u003e#2761\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe behavior of nested \u003ccode\u003efunction\u003c/code\u003e declarations in JavaScript depends on whether the code is run in strict mode or not. It would be problematic if esbuild preserved nested \u003ccode\u003efunction\u003c/code\u003e declarations in its output because then the behavior would depend on whether the output was run in strict mode or not instead of respecting the strict mode behavior of the original source code. To avoid this, esbuild transforms nested \u003ccode\u003efunction\u003c/code\u003e declarations to preserve the intended behavior of the original source code regardless of whether the output is run in strict mode or not:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003e// Original code\nif (true) {\n  function foo() {}\n  console.log(!!foo)\n  foo = null\n  console.log(!!foo)\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/9129e00e6c36a3e374820cb5e3fc2cd319c8ab85\"\u003e\u003ccode\u003e9129e00\u003c/code\u003e\u003c/a\u003e publish 0.27.3 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/e20e4115acda9c9f052fdd1ec8d7d5c5489e837b\"\u003e\u003ccode\u003ee20e411\u003c/code\u003e\u003c/a\u003e small fix to release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/0dc0f2dee556460bd7b81d5bbbae5a2f86449ab6\"\u003e\u003ccode\u003e0dc0f2d\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4322\"\u003e#4322\u003c/a\u003e: parse and print CSS \u003ccode\u003e@scope\u003c/code\u003e rules\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/55fe39164cd3429fcb92c6f358a8dfe2f6e6e559\"\u003e\u003ccode\u003e55fe391\u003c/code\u003e\u003c/a\u003e update firefox css gradient support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/2c35297c7ad249a51b9cc3974fa91f74dc13f68c\"\u003e\u003ccode\u003e2c35297\u003c/code\u003e\u003c/a\u003e update gradient lowering transform\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/9209e4445abe7610018f0f758fd5d1fa13ec3ea8\"\u003e\u003ccode\u003e9209e44\u003c/code\u003e\u003c/a\u003e Update Go to 1.25.7 (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4388\"\u003e#4388\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/e8d861b68cf8c3c3a4806ec87444ee48b9af1ade\"\u003e\u003ccode\u003ee8d861b\u003c/code\u003e\u003c/a\u003e close \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4374\"\u003e#4374\u003c/a\u003e: compat table for the \u003ccode\u003eusing\u003c/code\u003e feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/19b8887368396934957abd75f316cc069d6cc067\"\u003e\u003ccode\u003e19b8887\u003c/code\u003e\u003c/a\u003e no longer need \u003ccode\u003ewilliamkapke/node-compat-table\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/7e442189722b54bc6c574ae1148e1014d99e5f32\"\u003e\u003ccode\u003e7e44218\u003c/code\u003e\u003c/a\u003e the \u003ccode\u003ekangax/compat-table\u003c/code\u003e repo moved to a new url\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/23b9338ed5efbdfa29d59b8b0d8088b1761fdc39\"\u003e\u003ccode\u003e23b9338\u003c/code\u003e\u003c/a\u003e run \u003ccode\u003emake update-compat-table\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/evanw/esbuild/compare/v0.15.18...v0.27.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for esbuild since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 8.12.0 to 8.18.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.1 to 6.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/bdcf0c7f82387c18ac8fabfccd2f440645cef47b\"\u003e\u003ccode\u003ebdcf0c7\u003c/code\u003e\u003c/a\u003e v6.14.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/294db90c812ddbe7d7a35d5687c505fd21a2d6a2\"\u003e\u003ccode\u003e294db90\u003c/code\u003e\u003c/a\u003e [readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/5c308e5516c270a78caa6f278465914090f91ec6\"\u003e\u003ccode\u003e5c308e5\u003c/code\u003e\u003c/a\u003e [readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6addf8cf738d529c54d91f6f3ffb6c1be91bbfdc\"\u003e\u003ccode\u003e6addf8c\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cfc108f662326d6ab540f3545ef0b832baf83cdf\"\u003e\u003ccode\u003ecfc108f\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/`pars...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/febb64442a80e49200211fa38d3c96b58024ac77\"\u003e\u003ccode\u003efebb644\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when `thr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/f6a7abff1f13d644db9b05fe4f2c98ada6bf8482\"\u003e\u003ccode\u003ef6a7abf\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/fbc5206c25b4d1851cea683f02c10756c521d15a\"\u003e\u003ccode\u003efbc5206\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/1b9a8b4e78c6aff4c22fa559107227f02fd0216a\"\u003e\u003ccode\u003e1b9a8b4\u003c/code\u003e\u003c/a\u003e [actions] fix rebase workflow permissions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/2a35775614e0fb46ac8a3060201a32a7c23a7fda\"\u003e\u003ccode\u003e2a35775\u003c/code\u003e\u003c/a\u003e [meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.1...v6.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 2.0.1 to 2.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 2.x  14f1d91\u003c/li\u003e\n\u003cli\u003efmt  ed7780a\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  36603d5\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/a3efcee659ef0fb381e2b50d759c720900580a15\"\u003e\u003ccode\u003ea3efcee\u003c/code\u003e\u003c/a\u003e 2.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/14f1d91b0523ffb0c8bbe6a28dc98ddc56ae53bc\"\u003e\u003ccode\u003e14f1d91\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 2.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ed7780ab1cb8a7696f1813b5a945fcc70d8d1990\"\u003e\u003ccode\u003eed7780a\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/36603d5f3599a37af9e85eda30acd7d28599c36e\"\u003e\u003ccode\u003e36603d5\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 2.x  14f1d91\u003c/li\u003e\n\u003cli\u003efmt  ed7780a\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  36603d5\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/a3efcee659ef0fb381e2b50d759c720900580a15\"\u003e\u003ccode\u003ea3efcee\u003c/code\u003e\u003c/a\u003e 2.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/14f1d91b0523ffb0c8bbe6a28dc98ddc56ae53bc\"\u003e\u003ccode\u003e14f1d91\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 2.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ed7780ab1cb8a7696f1813b5a945fcc70d8d1990\"\u003e\u003ccode\u003eed7780a\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/36603d5f3599a37af9e85eda30acd7d28599c36e\"\u003e\u003ccode\u003e36603d5\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cookie` from 0.5.0 to 0.7.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jshttp/cookie/releases\"\u003ecookie's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.7.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAllow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eAlthough not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eAdd fast path for \u003ccode\u003eserialize\u003c/code\u003e without options, use \u003ccode\u003eobj.hasOwnProperty\u003c/code\u003e when parsing (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: parse cookies ~10% faster (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e by \u003ca href=\"https://github.com/kurtextrem\"\u003e\u003ccode\u003e@​kurtextrem\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/170\"\u003e#170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: narrow the validation of cookies to match RFC6265 (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/167\"\u003e#167\u003c/a\u003e by \u003ca href=\"https://github.com/bewinsnw\"\u003e\u003ccode\u003e@​bewinsnw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: add \u003ccode\u003emain\u003c/code\u003e to \u003ccode\u003epackage.json\u003c/code\u003e for rspack (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/166\"\u003e#166\u003c/a\u003e by \u003ca href=\"https://github.com/proudparrot2\"\u003e\u003ccode\u003e@​proudparrot2\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\"\u003ehttps://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003epartitioned\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/cf4658f492c5bd96aeaf5693c3500f8495031014\"\u003e\u003ccode\u003ecf4658f\u003c/code\u003e\u003c/a\u003e 0.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/6a8b8f5a49af7897b98ebfb29a1c4955afa3d33e\"\u003e\u003ccode\u003e6a8b8f5\u003c/code\u003e\u003c/a\u003e Allow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/58015c0b93de0b63db245cfdc5a108e511a81ad0\"\u003e\u003ccode\u003e58015c0\u003c/code\u003e\u003c/a\u003e Remove more code and perf wins (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/ab057d6c06b94a7b1e3358e69a685ae49c97b627\"\u003e\u003ccode\u003eab057d6\u003c/code\u003e\u003c/a\u003e 0.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/5f02ca87688481dbcf155e49ca8b61732f30e542\"\u003e\u003ccode\u003e5f02ca8\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/a5d591ce8447dd63821779724f96ad3c774c8579\"\u003e\u003ccode\u003ea5d591c\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/51968f94b5e820adeceef505539fa193ffe2d105\"\u003e\u003ccode\u003e51968f9\u003c/code\u003e\u003c/a\u003e Skip isNaN\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/9e7ca51ade4b325307eedd6b4dec190983e9e2cc\"\u003e\u003ccode\u003e9e7ca51\u003c/code\u003e\u003c/a\u003e perf(parse): cache length, return early (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/d6f39b0aab5521a8b118b466a515fd6eb0b9f65e\"\u003e\u003ccode\u003ed6f39b0\u003c/code\u003e\u003c/a\u003e Fix tests for old node\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/6bb701f14e59c5e768933bfae9b578db4ed26c6e\"\u003e\u003ccode\u003e6bb701f\u003c/code\u003e\u003c/a\u003e Remove failing scorecard\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jshttp/cookie/compare/v0.5.0...v0.7.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~blakeembrey\"\u003eblakeembrey\u003c/a\u003e, a new releaser for cookie since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 2.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-forge` from 1.3.1 to 1.3.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md\"\u003enode-forge's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.3.3 - 2025-12-02\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[pkcs12] Make digestAlgorithm parameters optional to fix PKCS#12/PFX issues\nintroduced in 1.3.2.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.3.2 - 2025-11-25\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHIGH\u003c/strong\u003e: ASN.1 Validator Desynchronization\n\u003cul\u003e\n\u003cli\u003eAn Interpretation Conflict (CWE-436) vulnerability in node-forge versions\n1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1\nstructures to desynchronize schema validations, yielding a semantic\ndivergence that may bypass downstream cryptographic verifications and\nsecurity decisions.\u003c/li\u003e\n\u003cli\u003eReported by Hunter Wodzenski.\u003c/li\u003e\n\u003cli\u003eCVE ID: \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-12816\"\u003eCVE-2025-12816\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGHSA ID: \u003ca href=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq\"\u003eGHSA-5gfm-wpxj-wjgq\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHIGH\u003c/strong\u003e: ASN.1 Unbounded Recursion\n\u003cul\u003e\n\u003cli\u003eAn Uncontrolled Recursion (CWE-674) vulnerability in node-forge versions\n1.3.1 and below enables remote, unauthenticated attackers to craft deep\nASN.1 structures that trigger unbounded recursive parsing. This leads to a\nDenial-of-Service (DoS) via stack exhaustion when parsing untrusted DER\ninputs.\u003c/li\u003e\n\u003cli\u003eReported by Hunter Wodzenski.\u003c/li\u003e\n\u003cli\u003eCVE ID: \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-66031\"\u003eCVE-2025-66031\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGHSA ID: \u003ca href=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-554w-wpv2-vw27\"\u003eGHSA-554w-wpv2-vw27\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMODERATE\u003c/strong\u003e: ASN.1 OID Integer Truncation\n\u003cul\u003e\n\u003cli\u003eAn Integer Overflow (CWE-190) vulnerability in node-forge versions 1.3.1\nand below enables remote, unauthenticated attackers to craft ASN.1\nstructures containing OIDs with oversized arcs. These arcs may be decoded\nas smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the\nbypass of downstream OID-based security decisions.\u003c/li\u003e\n\u003cli\u003eReported by Hunter Wodzenski.\u003c/li\u003e\n\u003cli\u003eCVE ID: \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-66030\"\u003eCVE-2025-66030\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGHSA ID: \u003ca href=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-65ch-62r8-g69g\"\u003eGHSA-65ch-62r8-g69g\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[asn1] Fix for vulnerability identified by CVE-2025-12816 PKCS#12 MAC\nverification bypass due to missing macData enforcement and improper\nasn1.validate routine.\u003c/li\u003e\n\u003cli\u003e[asn1] Add \u003ccode\u003efromDer()\u003c/code\u003e max recursion depth check.\n\u003cul\u003e\n\u003cli\u003eAdd a \u003ccode\u003easn1.maxDepth\u003c/code\u003e global configurable maximum depth of 256.\u003c/li\u003e\n\u003cli\u003eAdd a \u003ccode\u003easn1.fromDer()\u003c/code\u003e per-call \u003ccode\u003emaxDepth\u003c/code\u003e option.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNOTE\u003c/strong\u003e: The default maximum is assumed to be higher than needed for valid\ndata. If this assumption is false then this could be a breaking change.\nPlease file an issue if there are use cases that need a higher maximum.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNOTE\u003c/strong\u003e: The per-call \u003ccode\u003emaxDepth\u003c/code\u003e parameter has not been exposed up through\nall of the API stack due to the complexities involved. Please file an issue\nif there are use cases that require this instead of changing the default\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/1cea0aff4901589ae86e314f25782bbe312f9f69\"\u003e\u003ccode\u003e1cea0af\u003c/code\u003e\u003c/a\u003e Release 1.3.3.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/5265989cf5e54cfe1e27a10d71523007ce0507b1\"\u003e\u003ccode\u003e5265989\u003c/code\u003e\u003c/a\u003e Update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/e4f3961406395dd8e985dcf841852ceca73ac3a9\"\u003e\u003ccode\u003ee4f3961\u003c/code\u003e\u003c/a\u003e Fix changelog for release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/503979b0295cf633a30199d6bd937f4a222481a0\"\u003e\u003ccode\u003e503979b\u003c/code\u003e\u003c/a\u003e Update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/c3b3b32a8c157ac57752934d3af63b5f798b58b8\"\u003e\u003ccode\u003ec3b3b32\u003c/code\u003e\u003c/a\u003e Make digestAlgorithm parameters optional\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/6f70043a6db1abb9f3304f3d432efed3ba50fcca\"\u003e\u003ccode\u003e6f70043\u003c/code\u003e\u003c/a\u003e Update CVE details.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/f547b0d292745094190ecb250429d21e8804a375\"\u003e\u003ccode\u003ef547b0d\u003c/code\u003e\u003c/a\u003e Start 1.3.3-0.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/235ad3e70e4fdfdca4fdeb662dfba6588e2c38bd\"\u003e\u003ccode\u003e235ad3e\u003c/code\u003e\u003c/a\u003e Release 1.3.2.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/25982441171dc9815c87d3d886c5c8a1d092b334\"\u003e\u003ccode\u003e2598244\u003c/code\u003e\u003c/a\u003e Update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/0032dd0be8b6fb1b1092ef754d1dde91c10a95ad\"\u003e\u003ccode\u003e0032dd0\u003c/code\u003e\u003c/a\u003e Fix typos.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/digitalbazaar/forge/compare/v1.3.1...v1.3.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nRemoves `tar`\n\nUpdates `vite` from 5.4.11 to 7.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.3.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.7\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.7/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.6\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.6/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.5\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.5/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eNote: 7.2.5 failed to publish so it is skipped on npm\u003c/em\u003e\u003c/p\u003e\n\u003ch2\u003ev7.2.4\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.4/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.3/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@7.2.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@7.2.1/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@7.2.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@7.2.0/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.0-beta.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.0-beta.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.0-beta.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.0-beta.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.1.12\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.1.12/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.1.11\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.1.11/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.0...v7.3.1\"\u003e7.3.1\u003c/a\u003e (2026-01-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"http...\n\n_Description has been truncated_","html_url":"https://github.com/ccwu0918/pollinations/pull/11","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ccwu0918%2Fpollinations/issues/11","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-02-25T05:03:23.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"3987238856","node_id":"PR_kwDOOlCBCM7GHUpq","number":16,"state":"closed","title":"chore(deps): bump the npm_and_yarn group across 2 directories with 31 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-25T23:14:16.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-25T05:03:23.000Z","updated_at":"2026-02-25T23:14:18.000Z","time_to_close":65453,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"npm_and_yarn","update_count":31,"packages":[{"name":"axios","old_version":"1.7.2","new_version":"1.13.5","repository_url":"https://github.com/axios/axios"},{"name":"pm2","old_version":"5.4.0","new_version":"6.0.14","repository_url":"https://github.com/Unitech/pm2"},{"name":"vite","old_version":"5.2.11","new_version":"5.4.21","repository_url":"https://github.com/vitejs/vite"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"vitest","old_version":"1.6.0","new_version":"1.6.1","repository_url":"https://github.com/vitest-dev/vitest"},{"name":"@babel/helpers","old_version":"7.24.5","new_version":"7.28.6","repository_url":"https://github.com/babel/babel"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"base-x","old_version":"3.0.9","new_version":"3.0.11","repository_url":"https://github.com/cryptocoinjs/base-x"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"cipher-base","old_version":"1.0.4","new_version":"1.0.7","repository_url":"https://github.com/crypto-browserify/cipher-base"},{"name":"diff","old_version":"4.0.2","new_version":"4.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"h3","old_version":"1.11.1","new_version":"1.15.5","repository_url":"https://github.com/h3js/h3"},{"name":"jws","old_version":"3.2.2","new_version":"3.2.3","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"min-document","old_version":"2.19.0","new_version":"2.19.2","repository_url":"https://github.com/Raynos/min-document"},{"name":"minimatch","old_version":"3.1.2","new_version":"3.1.4","repository_url":"https://github.com/isaacs/minimatch"},{"name":"nanoid","old_version":"3.3.7","new_version":"3.3.11","repository_url":"https://github.com/ai/nanoid"},{"name":"node-forge","old_version":"1.3.1","new_version":"1.3.3","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"parse-duration","old_version":"1.1.0","new_version":"1.1.2","repository_url":"https://github.com/jkroso/parse-duration"},{"name":"pbkdf2","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/browserify/pbkdf2"},{"name":"qs","old_version":"6.5.3","new_version":"6.5.5","repository_url":"https://github.com/ljharb/qs"},{"name":"secp256k1","old_version":"4.0.3","new_version":"4.0.4","repository_url":"https://github.com/cryptocoinjs/secp256k1-node"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"systeminformation","old_version":"5.22.9","new_version":"5.31.1","repository_url":"https://github.com/sebhildebrandt/systeminformation"},{"name":"undici","old_version":"5.28.4","new_version":"5.29.0","repository_url":"https://github.com/nodejs/undici"},{"name":"validator","old_version":"13.12.0","new_version":"13.15.26","repository_url":"https://github.com/validatorjs/validator.js"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [axios](https://github.com/axios/axios) | `1.7.2` | `1.13.5` |\n| [pm2](https://github.com/Unitech/pm2) | `5.4.0` | `6.0.14` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `5.2.11` | `5.4.21` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `1.6.0` | `1.6.1` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.24.5` | `7.28.6` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [base-x](https://github.com/cryptocoinjs/base-x) | `3.0.9` | `3.0.11` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [cipher-base](https://github.com/crypto-browserify/cipher-base) | `1.0.4` | `1.0.7` |\n| [diff](https://github.com/kpdecker/jsdiff) | `4.0.2` | `4.0.4` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [h3](https://github.com/h3js/h3) | `1.11.1` | `1.15.5` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [min-document](https://github.com/Raynos/min-document) | `2.19.0` | `2.19.2` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.4` |\n| [nanoid](https://github.com/ai/nanoid) | `3.3.7` | `3.3.11` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [parse-duration](https://github.com/jkroso/parse-duration) | `1.1.0` | `1.1.2` |\n| [pbkdf2](https://github.com/browserify/pbkdf2) | `3.1.2` | `3.1.5` |\n| [qs](https://github.com/ljharb/qs) | `6.5.3` | `6.5.5` |\n| [secp256k1](https://github.com/cryptocoinjs/secp256k1-node) | `4.0.3` | `4.0.4` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [systeminformation](https://github.com/sebhildebrandt/systeminformation) | `5.22.9` | `5.31.1` |\n| [undici](https://github.com/nodejs/undici) | `5.28.4` | `5.29.0` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.12.0` | `13.15.26` |\n\nBumps the npm_and_yarn group with 9 updates in the /packages/utils directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `5.4.4` | `5.4.21` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) | `1.6.0` | `1.6.1` |\n| [bn.js](https://github.com/indutny/bn.js) | `4.12.0` | `4.12.3` |\n| [bn.js](https://github.com/indutny/bn.js) | `5.2.1` | `5.2.3` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [cross-spawn](https://github.com/moxystudio/node-cross-spawn) | `7.0.3` | `7.0.6` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.21.5` | `0.27.3` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [minimatch](https://github.com/isaacs/minimatch) | `3.1.2` | `3.1.4` |\n\n\nUpdates `axios` from 1.7.2 to 1.13.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.5\u003c/h2\u003e\n\u003ch2\u003eRelease 1.13.5\u003c/h2\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fixed a potential \u003cstrong\u003eDenial of Service\u003c/strong\u003e issue involving the \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBug fix:\u003c/strong\u003e Resolved an issue where \u003ccode\u003eAxiosError\u003c/code\u003e could be missing the \u003ccode\u003estatus\u003c/code\u003e field on and after \u003cstrong\u003ev1.13.3\u003c/strong\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch4\u003eSecurity\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix Denial of Service via \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix/5657. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7313\"\u003e#7313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure \u003ccode\u003estatus\u003c/code\u003e is present in \u003ccode\u003eAxiosError\u003c/code\u003e on and after v1.13.3. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFeatures / Improvements\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAdd input validation to \u003ccode\u003eisAbsoluteURL\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRefactor: bump minor package versions. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7356\"\u003e#7356\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDocumentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eClarify object-check comment. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix deprecated \u003ccode\u003eBuffer\u003c/code\u003e constructor usage and README formatting. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCI / Maintenance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eChore: fix issues with YAML. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7355\"\u003e#7355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: update workflow YAMLs. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: fix run condition. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDev deps: bump \u003ccode\u003ekarma-sourcemap-loader\u003c/code\u003e from 0.3.8 to 0.4.0. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChore(release): prepare release 1.13.5. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sachin11063\"\u003e\u003ccode\u003e@​sachin11063\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/asmitha-16\"\u003e\u003ccode\u003e@​asmitha-16\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog:\u003c/strong\u003e \u003ca href=\"https://github.com/axios/axios/compare/v1.13.4...v1.13.5\"\u003ehttps://github.com/axios/axios/compare/v1.13.4...v1.13.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.13.4\u003c/h2\u003e\n\u003ch2\u003eOverview\u003c/h2\u003e\n\u003cp\u003eThe release addresses issues discovered in v1.13.3 and includes significant CI/CD improvements.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v1.13.3...v1.13.4\"\u003ev1.13.3...v1.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's New in v1.13.4\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix: issues with version 1.13.3\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7352\"\u003e#7352\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ee90dfc28abffbb61e24974b2bd3139a4a40ac76\"\u003eee90dfc\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixed issues discovered in v1.13.3 release\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7201) [#7201](https://github.com/axios/axios/issues/7201) )\"\u003ecodenomnom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Nandann018-ux\" title=\"+60/-10 ([#7272](https://github.com/axios/axios/issues/7272) )\"\u003eNandan Acharya\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/KernelDeimos\" title=\"+22/-40 ([#7042](https://github.com/axios/axios/issues/7042) )\"\u003eEric Dubé\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/tiborpilz\" title=\"+40/-4 ([#5551](https://github.com/axios/axios/issues/5551) )\"\u003eTibor Pilz\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/joaoGabriel55\" title=\"+31/-4 ([#6314](https://github.com/axios/axios/issues/6314) )\"\u003eGabriel Quaresma\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/turadg\" title=\"+23/-6 ([#6265](https://github.com/axios/axios/issues/6265) )\"\u003eTuradg Aleahmad\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/29f75425f0c9f73021f5eedc869c176e30e05fe7\"\u003e\u003ccode\u003e29f7542\u003c/code\u003e\u003c/a\u003e chore(release): prepare release 1.13.5 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/431c3a361490a2e3d5ac5d9e08d66d4bb5f3cd2a\"\u003e\u003ccode\u003e431c3a3\u003c/code\u003e\u003c/a\u003e ci: fix run condition (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9ff3a78ad72ecd665a4b673686f1517d824284bf\"\u003e\u003ccode\u003e9ff3a78\u003c/code\u003e\u003c/a\u003e ci: update ymls (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/265b71234c20fabbd6d691858c65a7e9c978659f\"\u003e\u003ccode\u003e265b712\u003c/code\u003e\u003c/a\u003e docs: fix deprecated Buffer constructor and formatting issues in README (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/475e75a260668d227aec9f77735a49748c9041ff\"\u003e\u003ccode\u003e475e75a\u003c/code\u003e\u003c/a\u003e feat: add input validation to isAbsoluteURL (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57\"\u003e\u003ccode\u003e28c7215\u003c/code\u003e\u003c/a\u003e fix: Denial of Service via \u003cstrong\u003eproto\u003c/strong\u003e Key in mergeConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/04cf01969ed58f96920da032f340bfe4614aab90\"\u003e\u003ccode\u003e04cf019\u003c/code\u003e\u003c/a\u003e docs: clarify object check comment (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/696fa753c5366afbd21859c294c64c9ff2b359ab\"\u003e\u003ccode\u003e696fa75\u003c/code\u003e\u003c/a\u003e fix: status is missing in AxiosError on and after v1.13.3 (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/569f028a5878faaec8d7d138ba686aac407bda4c\"\u003e\u003ccode\u003e569f028\u003c/code\u003e\u003c/a\u003e fix: added a option to choose between legacy and the new request/response int...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/44b7c9f0c4900fd8784f18e871199402f07fc69f\"\u003e\u003ccode\u003e44b7c9f\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump karma-sourcemap-loader (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v1.7.2...v1.13.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for axios since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `pm2` from 5.4.0 to 6.0.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Unitech/pm2/releases\"\u003epm2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.14\u003c/h2\u003e\n\u003ch2\u003e6.0.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed version of \u003ccode\u003e@​pm2/pm2-version-check\u003c/code\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6055\"\u003e#6055\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCVE-2025-64718 Update js-yaml\u003c/li\u003e\n\u003cli\u003ereplace fs.R_OK with fs.constants.T_OK \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6012\"\u003e#6012\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6019\"\u003e#6019\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix blessed dep\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6037\"\u003e#6037\u003c/a\u003e Drop npm-shrinkwrap in favor of fixed dependencies versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5577\"\u003e#5577\u003c/a\u003e fix pm2 monit crash\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6034\"\u003e#6034\u003c/a\u003e replace package-lock.json by npm-shrinkwrap.json\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5915\"\u003e#5915\u003c/a\u003e fix allowing to update namespaced pm2 NPM module (\u003ccode\u003e@​org/module-name\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erevert \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5971\"\u003e#5971\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6031\"\u003e#6031\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.9\u003c/h2\u003e\n\u003ch2\u003e6.0.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdates all typescript definitions\u003c/li\u003e\n\u003cli\u003eupgrade github ci workflows\u003c/li\u003e\n\u003cli\u003eupgrade mocha dep and adapt tests\u003c/li\u003e\n\u003cli\u003ebump packages\u003c/li\u003e\n\u003cli\u003efix:Potential ReDoS Vulnerability or Inefficient Regular Expression in Project: Need for Assessment and Mitigation \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5971\"\u003e#5971\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: package-lock update\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: ansis-node10 \u003ca href=\"https://github.com/Unitech/pm2/commit/99d9224e940d119a1ad5b241b4fc4e0db7c830ed\"\u003ehttps://github.com/Unitech/pm2/commit/99d9224e940d119a1ad5b241b4fc4e0db7c830ed\u003c/a\u003e @\u003cbr /\u003e\nwebdiscus\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace chalk with ansis by \u003ca href=\"https://github.com/webdiscus\"\u003e\u003ccode\u003e@​webdiscus\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5976\"\u003e#5976\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5247\"\u003e#5247\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.5\u003c/h2\u003e\n\u003ch1\u003e6.0.5\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eBun support - Fixes \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5893\"\u003e#5893\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5774\"\u003e#5774\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5682\"\u003e#5682\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5675\"\u003e#5675\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5777\"\u003e#5777\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDisable git parsing by default \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5909\"\u003e#5909\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/2182\"\u003e#2182\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5801\"\u003e#5801\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5051\"\u003e#5051\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5696\"\u003e#5696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd WEBP content type for pm2 serve \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5900\"\u003e#5900\u003c/a\u003e \u003ca href=\"https://github.com/tbo47\"\u003e\u003ccode\u003e@​tbo47\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable PM2 module update from tarball \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5906\"\u003e#5906\u003c/a\u003e \u003ca href=\"https://github.com/AYOKINYA\"\u003e\u003ccode\u003e@​AYOKINYA\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix treekil on FreeBSD \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5896\"\u003e#5896\u003c/a\u003e \u003ca href=\"https://github.com/skeyby\"\u003e\u003ccode\u003e@​skeyby\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix allowing to update namespaced pm2 NPM module (\u003ccode\u003e@​org/module-name\u003c/code\u003e) \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5915\"\u003e#5915\u003c/a\u003e \u003ca href=\"https://github.com/endelendel\"\u003e\u003ccode\u003e@​endelendel\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.4.2\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Unitech/pm2/blob/master/CHANGELOG.md\"\u003epm2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e6.0.14\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed version of \u003ccode\u003e@​pm2/pm2-version-check\u003c/code\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6055\"\u003e#6055\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCVE-2025-64718 Update js-yaml\u003c/li\u003e\n\u003cli\u003ereplace fs.R_OK with fs.constants.T_OK \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6012\"\u003e#6012\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6019\"\u003e#6019\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix blessed package import\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6037\"\u003e#6037\u003c/a\u003e Drop npm-shrinkwrap in favor of fixed dependencies versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5577\"\u003e#5577\u003c/a\u003e fix pm2 monit crash\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6034\"\u003e#6034\u003c/a\u003e replace package-lock.json by npm-shrinkwrap.json\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5915\"\u003e#5915\u003c/a\u003e fix allowing to update namespaced pm2 NPM module (\u003ccode\u003e@​org/module-name\u003c/code\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.10\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erevert \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5971\"\u003e#5971\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6031\"\u003e#6031\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.9\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdates all typescript definitions\u003c/li\u003e\n\u003cli\u003eupgrade github ci workflows\u003c/li\u003e\n\u003cli\u003eupgrade mocha dep and adapt tests\u003c/li\u003e\n\u003cli\u003ebump packages\u003c/li\u003e\n\u003cli\u003efix:Potential ReDoS Vulnerability or Inefficient Regular Expression in Project: Need for Assessment and Mitigation \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5971\"\u003e#5971\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: package-lock update\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: ansis-node10 \u003ca href=\"https://github.com/Unitech/pm2/commit/99d9224e940d119a1ad5b241b4fc4e0db7c830ed\"\u003ehttps://github.com/Unitech/pm2/commit/99d9224e940d119a1ad5b241b4fc4e0db7c830ed\u003c/a\u003e \u003ca href=\"https://github.com/webdiscus\"\u003e\u003ccode\u003e@​webdiscus\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace chalk with smaller alternative by \u003ca href=\"https://github.com/webdiscus\"\u003e\u003ccode\u003e@​webdiscus\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.0.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBun support - Fixes \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5893\"\u003e#5893\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5774\"\u003e#5774\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5682\"\u003e#5682\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5675\"\u003e#5675\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5777\"\u003e#5777\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDisable git parsing by default \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5909\"\u003e#5909\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/2182\"\u003e#2182\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5801\"\u003e#5801\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5051\"\u003e#5051\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5696\"\u003e#5696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd WEBP content type for pm2 serve \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5900\"\u003e#5900\u003c/a\u003e \u003ca href=\"https://github.com/tbo47\"\u003e\u003ccode\u003e@​tbo47\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable PM2 module update from tarball \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5906\"\u003e#5906\u003c/a\u003e \u003ca href=\"https://github.com/AYOKINYA\"\u003e\u003ccode\u003e@​AYOKINYA\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/ff1ca974afada8730aa55f8ed1df40e700cedbcb\"\u003e\u003ccode\u003eff1ca97\u003c/code\u003e\u003c/a\u003e pm2@6.0.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/34e6c013007b46010374c77e0617efc1ca0725c2\"\u003e\u003ccode\u003e34e6c01\u003c/code\u003e\u003c/a\u003e CVE-2025-64718 Update js-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/4c8b7332731c8fec6baa51c8b0ebdc5a4b89ad4f\"\u003e\u003ccode\u003e4c8b733\u003c/code\u003e\u003c/a\u003e replace fs.R_OK with fs.constants.T_OK \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6012\"\u003e#6012\u003c/a\u003e \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6019\"\u003e#6019\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/6edb9c09b138ffbf5644926fc33d666eea11520e\"\u003e\u003ccode\u003e6edb9c0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/6055\"\u003e#6055\u003c/a\u003e from d-oliveros/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/13ab5f4c92d4370194748d1f81223fa410597907\"\u003e\u003ccode\u003e13ab5f4\u003c/code\u003e\u003c/a\u003e Fixed version of \u003ccode\u003e@​pm2/pm2-version-check\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/2c444715534a547fab5c7a6eb5819e6cd71e8714\"\u003e\u003ccode\u003e2c44471\u003c/code\u003e\u003c/a\u003e pm2@6.0.13\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/d6f299d9e384b0a04fff8f8103ffbe64d942af42\"\u003e\u003ccode\u003ed6f299d\u003c/code\u003e\u003c/a\u003e pm2@6.0.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/5ff07ee22ed98fa2c28d4ae04b7d4c6512524f19\"\u003e\u003ccode\u003e5ff07ee\u003c/code\u003e\u003c/a\u003e update package-lock.json\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/0b5d575e320820c3bd9ed5d6b5b2d3e03ed2ce46\"\u003e\u003ccode\u003e0b5d575\u003c/code\u003e\u003c/a\u003e debug@4.4.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Unitech/pm2/commit/4c309aa3a8b73e861699fb64ca6ca931a33000e8\"\u003e\u003ccode\u003e4c309aa\u003c/code\u003e\u003c/a\u003e use forked blessed \u003ca href=\"https://redirect.github.com/Unitech/pm2/issues/5577\"\u003e#5577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Unitech/pm2/compare/v5.4.0...v6.0.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vite` from 5.2.11 to 5.4.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.4.21\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v5.4.21/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev5.4.20\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/ca88ed7398288ce0c60176ac9a6392f10654c67c/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev5.4.19\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v5.4.19/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/v5.4.21/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.21 (2025-10-20)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(dev): trim trailing slash before \u003ccode\u003eserver.fs.deny\u003c/code\u003e check (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20968\"\u003e#20968\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20970\"\u003e#20970\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/cad1d31d0635dd8fd4ddfe6e5a92eb9ff13cd06c\"\u003ecad1d31\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20968\"\u003e#20968\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20970\"\u003e#20970\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update CHANGELOG (\u003ca href=\"https://github.com/vitejs/vite/commit/ca88ed7398288ce0c60176ac9a6392f10654c67c\"\u003eca88ed7\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.20 (2025-09-08)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: apply \u003ccode\u003efs.strict\u003c/code\u003e check to HTML files (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20736\"\u003e#20736\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/482000f57f56fe6ff2e905305100cfe03043ddea\"\u003e482000f\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20736\"\u003e#20736\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: port sirv@3.0.2 changes to sirv@2.0.4 (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20737\"\u003e#20737\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/4f1c35bcbb5830290c694aa14b6789e07450f069\"\u003e4f1c35b\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/20737\"\u003e#20737\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.19 (2025-04-30)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19965\"\u003e#19965\u003c/a\u003e, check static serve file inside sirv (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19966\"\u003e#19966\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/766947e7cbf1cdd07df9737394e8c870401b78b0\"\u003e766947e\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19965\"\u003e#19965\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19966\"\u003e#19966\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.18 (2025-04-10)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19830\"\u003e#19830\u003c/a\u003e, reject requests with \u003ccode\u003e#\u003c/code\u003e in request-target (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19831\"\u003e#19831\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/823675baff2bd6809c74ba2d9acca0327923a54f\"\u003e823675b\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19830\"\u003e#19830\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19831\"\u003e#19831\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.17 (2025-04-03)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19782\"\u003e#19782\u003c/a\u003e, fs check with svg and relative paths (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19784\"\u003e#19784\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/84b2b46ed129be8215108e789a90adbb33a9c42c\"\u003e84b2b46\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19782\"\u003e#19782\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19784\"\u003e#19784\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.16 (2025-03-31)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19761\"\u003e#19761\u003c/a\u003e, fs check in transform middleware (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19762\"\u003e#19762\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/b627c50d359f3bd9b602408fbbf462cf4a2f019c\"\u003eb627c50\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19761\"\u003e#19761\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19762\"\u003e#19762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.15 (2025-03-24)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19702\"\u003e#19702\u003c/a\u003e, fs raw query with query separators (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19703\"\u003e#19703\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/807d7f06d33ab49c48a2a3501da3eea1906c0d41\"\u003e807d7f0\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19702\"\u003e#19702\u003c/a\u003e \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19703\"\u003e#19703\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e5.4.14 (2025-01-21)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: \u003ccode\u003epreview.allowedHosts\u003c/code\u003e with specific values was not respected (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19246\"\u003e#19246\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/9df6e6beabf0d18988ec13b8b742d2aba29662f9\"\u003e9df6e6b\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19246\"\u003e#19246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: allow CORS from loopback addresses by default (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19249\"\u003e#19249\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/7d1699ccf673e2790704756d89d2e1e4ee478fb4\"\u003e7d1699c\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/vitejs/vite/issues/19249\"\u003e#19249\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/adce3c22c64cc9d44cc8f45cc92b543e3e4bf385\"\u003e\u003ccode\u003eadce3c2\u003c/code\u003e\u003c/a\u003e release: v5.4.21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/cad1d31d0635dd8fd4ddfe6e5a92eb9ff13cd06c\"\u003e\u003ccode\u003ecad1d31\u003c/code\u003e\u003c/a\u003e fix(dev): trim trailing slash before \u003ccode\u003eserver.fs.deny\u003c/code\u003e check (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20968\"\u003e#20968\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20970\"\u003e#20970\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/ca88ed7398288ce0c60176ac9a6392f10654c67c\"\u003e\u003ccode\u003eca88ed7\u003c/code\u003e\u003c/a\u003e chore: update CHANGELOG\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/997700f01c7199daf7330d33a7fd3a43b2e9e3ba\"\u003e\u003ccode\u003e997700f\u003c/code\u003e\u003c/a\u003e release: v5.4.20\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/482000f57f56fe6ff2e905305100cfe03043ddea\"\u003e\u003ccode\u003e482000f\u003c/code\u003e\u003c/a\u003e fix: apply \u003ccode\u003efs.strict\u003c/code\u003e check to HTML files (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/20736\"\u003e#20736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/80a333a23103ced0442d4463d1191433d90f5e19\"\u003e\u003ccode\u003e80a333a\u003c/code\u003e\u003c/a\u003e release: v5.4.19\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/766947e7cbf1cdd07df9737394e8c870401b78b0\"\u003e\u003ccode\u003e766947e\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19965\"\u003e#19965\u003c/a\u003e, check static serve file inside sirv (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19966\"\u003e#19966\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/731b77d19d36f5682a5441b49cb2f6473389ad99\"\u003e\u003ccode\u003e731b77d\u003c/code\u003e\u003c/a\u003e release: v5.4.18\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/823675baff2bd6809c74ba2d9acca0327923a54f\"\u003e\u003ccode\u003e823675b\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19830\"\u003e#19830\u003c/a\u003e, reject requests with \u003ccode\u003e#\u003c/code\u003e in request-target (\u003ca href=\"https://github.com/vitejs/vite/tree/HEAD/packages/vite/issues/19831\"\u003e#19831\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitejs/vite/commit/0a2518a98d2354c61ee8ef51f7d00fa92aebb511\"\u003e\u003ccode\u003e0a2518a\u003c/code\u003e\u003c/a\u003e release: v5.4.17\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/vitejs/vite/commits/v5.4.21/packages/vite\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `vitest` from 1.6.0 to 1.6.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitest-dev/vitest/releases\"\u003evitest's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.1\u003c/h2\u003e\n\u003cp\u003eThis release includes security patches for:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitest-dev/vitest/security/advisories/GHSA-9crc-q9x8-hgqq\"\u003eRemote Code Execution when accessing a malicious website while Vitest API server is listening | CVE-2025-24964\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e   🐞 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebackport \u003ca href=\"https://redirect.github.com/vitest-dev/vitest/issues/7317\"\u003evitest-dev/vitest#7317\u003c/a\u003e to v1 -  by \u003ca href=\"https://github.com/hi-ogawa\"\u003e\u003ccode\u003e@​hi-ogawa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/vitest-dev/vitest/pull/7319\"\u003evitest-dev/vitest#7319\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/vitest-dev/vitest/compare/v1.6.0...v1.6.1\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitest-dev/vitest/commit/017e1ee6c66179568b758b4d1e1796f551dc1366\"\u003e\u003ccode\u003e017e1ee\u003c/code\u003e\u003c/a\u003e chore: release v1.6.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitest-dev/vitest/commit/7ce9fbb4972d45c6fd34c843645ef6f549bbb241\"\u003e\u003ccode\u003e7ce9fbb\u003c/code\u003e\u003c/a\u003e fix: backport \u003ca href=\"https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/7317\"\u003e#7317\u003c/a\u003e to v1 (\u003ca href=\"https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/7319\"\u003e#7319\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/vitest-dev/vitest/commits/v1.6.1/packages/vitest\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/helpers` from 7.24.5 to 7.28.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/helpers\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17555\"\u003e#17555\u003c/a\u003e perf: Use lighter traversal for jsx \u003ccode\u003e__source,__self\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 7\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eBabel Bot (\u003ca href=\"https://github.com/babel-bot\"\u003e\u003ccode\u003e@​babel-bot\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliot Pontarelli (\u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eKadhirash Sivakumar (\u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecoderaiser (\u003ca href=\"https://github.com/coderaiser\"\u003e\u003ccode\u003e@​coderaiser\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.5 (2025-10-23)\u003c/h2\u003e\n\u003cp\u003eThank you \u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/Olexandr88\"\u003e\u003ccode\u003e@​Olexandr88\u003c/code\u003e\u003c/a\u003e, and \u003ca href=\"https://github.com/youthfulhps\"\u003e\u003ccode\u003e@​youthfulhps\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:eyeglasses: Spec Compliance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17446\"\u003e#17446\u003c/a\u003e Allow \u003ccode\u003eRuntime Errors for Function Call Assignment Targets\u003c/code\u003e (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-helper-validator-identifier\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17501\"\u003e#17501\u003c/a\u003e fix: update identifier to unicode 17 (\u003ca href=\"https://github.com/fisker\"\u003e\u003ccode\u003e@​fisker\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-destructuring-private\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17534\"\u003e#17534\u003c/a\u003e Allow mixing private destructuring and rest (\u003ca href=\"https://github.com/CO0Ki3\"\u003e\u003ccode\u003e@​CO0Ki3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17521\"\u003e#17521\u003c/a\u003e Improve \u003ccode\u003e@babel/parser\u003c/code\u003e error typing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17491\"\u003e#17491\u003c/a\u003e fix: improve ts-only declaration parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-proposal-discard-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-destructuring\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c1b55f6ad56523ccc96fa68721de0bed2f2cdb23\"\u003e\u003ccode\u003ec1b55f6\u003c/code\u003e\u003c/a\u003e Use \u003ccode\u003eeslint.config.mts\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17573\"\u003e#17573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/741cbd2381ac0cda3afd42bc04454a87d9d8762a\"\u003e\u003ccode\u003e741cbd2\u003c/code\u003e\u003c/a\u003e chore: fix various typos across codebase (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17476\"\u003e#17476\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-helpers/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/baa4cb8b9f8a551d7dae9042b19ea2f74df6b110\"\u003e\u003ccode\u003ebaa4cb8\u003c/code\u003e\u003c/a\u003e v7.27.6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.28.6/packages/babel-helpers\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/helpers\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `base-x` from 3.0.9 to 3.0.11\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/043a888a9bae09bc4b40500e37792e2c6398e9f2\"\u003e\u003ccode\u003e043a888\u003c/code\u003e\u003c/a\u003e 3.0.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/2705dddd2565b455641985974b534291d8defb31\"\u003e\u003ccode\u003e2705ddd\u003c/code\u003e\u003c/a\u003e [backport 3.x] Prohibit char codes that would overflow the \u003ccode\u003eBASE_MAP\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/3d43c0e16bfbc045a0a8bb6423e6e336df81b512\"\u003e\u003ccode\u003e3d43c0e\u003c/code\u003e\u003c/a\u003e 3.0.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cryptocoinjs/base-x/commit/0a3544695fa6800649a8b78ed46cece61bcdbbe5\"\u003e\u003ccode\u003e0a35446\u003c/code\u003e\u003c/a\u003e Improve decoding performance\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/cryptocoinjs/base-x/compare/v3.0.9...v3.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 1.x  c460dbd\u003c/li\u003e\n\u003cli\u003efmt  ccb8ac6\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  c3c73c8\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v1.1.11...v1.1.12\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/44f33b47c5c6a965d507421af43e86cf5971d711\"\u003e\u003ccode\u003e44f33b4\u003c/code\u003e\u003c/a\u003e 1.1.12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c460dbd68e428d147b2080622d8ce126c7a08570\"\u003e\u003ccode\u003ec460dbd\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 1.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ccb8ac6d4292b7661b677fe048ba6690c877f51f\"\u003e\u003ccode\u003eccb8ac6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/c3c73c8b088defc70851843be88ccc3af08e7217\"\u003e\u003ccode\u003ec3c73c8\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cipher-base` from 1.0.4 to 1.0.7\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/browserify/cipher-base/blob/master/CHANGELOG.md\"\u003ecipher-base's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.6...v1.0.7\"\u003ev1.0.7\u003c/a\u003e - 2025-09-24\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003eto-buffer\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/fd1e5eeafccbc8eaa827ee6b9b60c14608aa784f\"\u003e\u003ccode\u003efd1e5ee\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/08ba8034223a53d300b7dccf33d8f14e52379a34\"\u003e\u003ccode\u003e08ba803\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.5...v1.0.6\"\u003ev1.0.6\u003c/a\u003e - 2024-11-26\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] io.js 3.0 - Node.js 5.3 typed array support \u003ca href=\"https://github.com/browserify/cipher-base/commit/b7ddd2ac24e65cc47befc1e0eb5026422f8ab037\"\u003e\u003ccode\u003eb7ddd2a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/browserify/cipher-base/compare/v1.0.4...v1.0.5\"\u003ev1.0.5\u003c/a\u003e - 2024-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] standard -\u0026gt; eslint, make test dir, etc \u003ca href=\"https://github.com/browserify/cipher-base/commit/ae02fd6624c41ac4ac18077be797111d1955bc76\"\u003e\u003ccode\u003eae02fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] migrate from travis to GHA \u003ca href=\"https://github.com/browserify/cipher-base/commit/66387d71461287ad9067bb1bcbfdc47403a33ee7\"\u003e\u003ccode\u003e66387d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix package.json indentation \u003ca href=\"https://github.com/browserify/cipher-base/commit/5c02918ac58c875ed36913c2dc3e1043f4d1c99c\"\u003e\u003ccode\u003e5c02918\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] return valid values on multi-byte-wide TypedArray input \u003ca href=\"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294\"\u003e\u003ccode\u003e8fd1364\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/88dc806806d3dc41444dbf639c87c00f82c949b3\"\u003e\u003ccode\u003e88dc806\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add \u003ccode\u003enpmignore\u003c/code\u003e and \u003ccode\u003esafe-publish-latest\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/7a137d749ce7ea7ea56b9c096844b1b8ab723f61\"\u003e\u003ccode\u003e7a137d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly apps should have lockfiles \u003ca href=\"https://github.com/browserify/cipher-base/commit/42528f291db16bf2e7d5f831ebe2ad87fd0b1f42\"\u003e\u003ccode\u003e42528f2\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003einherits\u003c/code\u003e, \u003ccode\u003esafe-buffer\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/0e7a2d9a33a391e82fa9cf512d6e25cc91ab8613\"\u003e\u003ccode\u003e0e7a2d9\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] add missing \u003ccode\u003eengines.node\u003c/code\u003e \u003ca href=\"https://github.com/browserify/cipher-base/commit/f2dc13e47bbcf3c873db9a9e0f83e5f29d0783fe\"\u003e\u003ccode\u003ef2dc13e\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/00567180c846dd3db3848c9223991c58a0d5490c\"\u003e\u003ccode\u003e0056718\u003c/code\u003e\u003c/a\u003e v1.0.7\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/fd1e5eeafccbc8eaa827ee6b9b60c14608aa784f\"\u003e\u003ccode\u003efd1e5ee\u003c/code\u003e\u003c/a\u003e [Refactor] use \u003ccode\u003eto-buffer\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/08ba8034223a53d300b7dccf33d8f14e52379a34\"\u003e\u003ccode\u003e08ba803\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/f5249f94611506ef35a8be4d48a3fc5ecf1fac63\"\u003e\u003ccode\u003ef5249f9\u003c/code\u003e\u003c/a\u003e v1.0.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/b7ddd2ac24e65cc47befc1e0eb5026422f8ab037\"\u003e\u003ccode\u003eb7ddd2a\u003c/code\u003e\u003c/a\u003e [Fix] io.js 3.0 - Node.js 5.3 typed array support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/f03cebfdad1cba1d56614c58affa303b0fa2a43e\"\u003e\u003ccode\u003ef03cebf\u003c/code\u003e\u003c/a\u003e v1.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/88dc806806d3dc41444dbf639c87c00f82c949b3\"\u003e\u003ccode\u003e88dc806\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/7a137d749ce7ea7ea56b9c096844b1b8ab723f61\"\u003e\u003ccode\u003e7a137d7\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003enpmignore\u003c/code\u003e and \u003ccode\u003esafe-publish-latest\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/5c02918ac58c875ed36913c2dc3e1043f4d1c99c\"\u003e\u003ccode\u003e5c02918\u003c/code\u003e\u003c/a\u003e [meta] fix package.json indentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/browserify/cipher-base/commit/8fd136432ca298a664f5637629cf2b42a6c7f294\"\u003e\u003ccode\u003e8fd1364\u003c/code\u003e\u003c/a\u003e [Fix] return valid values on multi-byte-wide TypedArray input\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/crypto-browserify/cipher-base/compare/v1.0.4...v1.0.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for cipher-base since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `diff` from 4.0.2 to 4.0.4\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/kpdecker/jsdiff/blob/master/release-notes.md\"\u003ediff's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.4 - January 2026\u003c/h2\u003e\n\u003cp\u003eOnly change from 4.0.2 is a backport of the fix to \u003ca href=\"https://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\"\u003ehttps://github.com/kpdecker/jsdiff/security/advisories/GHSA-73rr-hh4g-fpgx\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev4.0.3 (deprecated)\u003c/h2\u003e\n\u003cp\u003eAccidental release - do not use.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/f06f3e4cacad5955caf891a8a02c5bb1c954bcb5\"\u003e\u003ccode\u003ef06f3e4\u003c/code\u003e\u003c/a\u003e v4.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/0179a484ffaec7c8d5d6b69d8c3905473383de75\"\u003e\u003ccode\u003e0179a48\u003c/code\u003e\u003c/a\u003e v4.0.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/4568cae5ae7646962bf3c5641907d1fb5af90683\"\u003e\u003ccode\u003e4568cae\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/649\"\u003ekpdecker/jsdiff#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kpdecker/jsdiff/commit/4de0ffa13ad51db7a27567c2b870fb4e43f0814a\"\u003e\u003ccode\u003e4de0ffa\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/kpdecker/jsdiff/pull/647\"\u003ekpdecker/jsdiff#647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/kpdecker/jsdiff/compare/v4.0.2...v4.0.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~explodingcabbage\"\u003eexplodingcabbage\u003c/a\u003e, a new releaser for diff since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `esbuild` from 0.20.2 to 0.21.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/releases\"\u003eesbuild's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.27.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ePreserve URL fragments in data URLs (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4370\"\u003e#4370\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eConsider the following HTML, CSS, and SVG:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eindex.html\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"html\"\u003e\u003ccode\u003e\u0026lt;!DOCTYPE html\u0026gt;\n\u0026lt;html\u0026gt;\n  \u0026lt;head\u0026gt;\u0026lt;link rel=\u0026quot;stylesheet\u0026quot; href=\u0026quot;icons.css\u0026quot;\u0026gt;\u0026lt;/head\u0026gt;\n  \u0026lt;body\u0026gt;\u0026lt;div class=\u0026quot;triangle\u0026quot;\u0026gt;\u0026lt;/div\u0026gt;\u0026lt;/body\u0026gt;\n\u0026lt;/html\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eicons.css\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e.triangle {\n  width: 10px;\n  height: 10px;\n  background: currentColor;\n  clip-path: url(./triangle.svg#x);\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003etriangle.svg\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"xml\"\u003e\u003ccode\u003e\u0026lt;svg xmlns=\u0026quot;http://www.w3.org/2000/svg\u0026quot;\u0026gt;\n  \u0026lt;defs\u0026gt;\n    \u0026lt;clipPath id=\u0026quot;x\u0026quot;\u0026gt;\n      \u0026lt;path d=\u0026quot;M0 0H10V10Z\u0026quot;/\u0026gt;\n    \u0026lt;/clipPath\u0026gt;\n  \u0026lt;/defs\u0026gt;\n\u0026lt;/svg\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThe CSS uses a URL fragment (the \u003ccode\u003e#x\u003c/code\u003e) to reference the \u003ccode\u003eclipPath\u003c/code\u003e element in the SVG file. Previously esbuild's CSS bundler didn't preserve the URL fragment when bundling the SVG using the \u003ccode\u003edataurl\u003c/code\u003e loader, which broke the bundled CSS. With this release, esbuild will now preserve the URL fragment in the bundled CSS:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e/* icons.css */\n.triangle {\n  width: 10px;\n  height: 10px;\n  background: currentColor;\n  clip-path: url('data:image/svg+xml,\u0026lt;svg xmlns=\u0026quot;http://www.w3.org/2000/svg\u0026quot;\u0026gt;\u0026lt;defs\u0026gt;\u0026lt;clipPath id=\u0026quot;x\u0026quot;\u0026gt;\u0026lt;path d=\u0026quot;M0 0H10V10Z\u0026quot;/\u0026gt;\u0026lt;/clipPath\u0026gt;\u0026lt;/defs\u0026gt;\u0026lt;/svg\u0026gt;#x');\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/blob/main/CHANGELOG-2024.md\"\u003eesbuild's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog: 2024\u003c/h1\u003e\n\u003cp\u003eThis changelog documents all esbuild versions published in the year 2024 (versions 0.19.12 through 0.24.2).\u003c/p\u003e\n\u003ch2\u003e0.24.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix regression with \u003ccode\u003e--define\u003c/code\u003e and \u003ccode\u003eimport.meta\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4010\"\u003e#4010\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4012\"\u003e#4012\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/evanw/esbuild/pull/4013\"\u003e#4013\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe previous change in version 0.24.1 to use a more expression-like parser for \u003ccode\u003edefine\u003c/code\u003e values to allow quoted property names introduced a regression that removed the ability to use \u003ccode\u003e--define:import.meta=...\u003c/code\u003e. Even though \u003ccode\u003eimport\u003c/code\u003e is normally a keyword that can't be used as an identifier, ES modules special-case the \u003ccode\u003eimport.meta\u003c/code\u003e expression to behave like an identifier anyway. This change fixes the regression.\u003c/p\u003e\n\u003cp\u003eThis fix was contributed by \u003ca href=\"https://github.com/sapphi-red\"\u003e\u003ccode\u003e@​sapphi-red\u003c/code\u003e\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.24.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAllow \u003ccode\u003ees2024\u003c/code\u003e as a target in \u003ccode\u003etsconfig.json\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4004\"\u003e#4004\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eTypeScript recently \u003ca href=\"https://devblogs.microsoft.com/typescript/announcing-typescript-5-7/#support-for---target-es2024-and---lib-es2024\"\u003eadded \u003ccode\u003ees2024\u003c/code\u003e\u003c/a\u003e as a compilation target, so esbuild now supports this in the \u003ccode\u003etarget\u003c/code\u003e field of \u003ccode\u003etsconfig.json\u003c/code\u003e files, such as in the following configuration file:\u003c/p\u003e\n\u003cpre lang=\"json\"\u003e\u003ccode\u003e{\n  \u0026quot;compilerOptions\u0026quot;: {\n    \u0026quot;target\u0026quot;: \u0026quot;ES2024\u0026quot;\n  }\n}\n\u003c/code...\n\n_Description has been truncated_","html_url":"https://github.com/JSTONE1111/x-app-template/pull/16","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/JSTONE1111%2Fx-app-template/issues/16","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/16/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-02-24T18:05:05.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"3985100140","node_id":"PR_kwDOOz1n5s7GAUqv","number":10,"state":"closed","title":"Bump the npm_and_yarn group across 13 directories with 29 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-25T00:40:37.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-24T18:05:05.000Z","updated_at":"2026-02-25T00:40:39.000Z","time_to_close":23732,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":29,"packages":[{"name":"axios","old_version":"0.27.2","new_version":"0.30.3","repository_url":"https://github.com/axios/axios"},{"name":"dompurify","old_version":"2.5.8","new_version":"3.2.4","repository_url":"https://github.com/cure53/DOMPurify"},{"name":"image-size","old_version":"1.2.0","new_version":"1.2.1","repository_url":"https://github.com/image-size/image-size"},{"name":"langchain","old_version":"0.1.37","new_version":"0.2.19","repository_url":"https://github.com/langchain-ai/langchainjs"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"nodemailer","old_version":"6.9.16","new_version":"7.0.11","repository_url":"https://github.com/nodemailer/nodemailer"},{"name":"private-ip","old_version":"2.3.4","new_version":"3.0.2","repository_url":"https://github.com/frenchbread/private-ip"},{"name":"typeorm","old_version":"0.3.20","new_version":"0.3.26","repository_url":"https://github.com/typeorm/typeorm"},{"name":"webpack","old_version":"5.97.1","new_version":"5.104.1","repository_url":"https://github.com/webpack/webpack"},{"name":"@babel/runtime","old_version":"7.26.0","new_version":"7.26.10","repository_url":"https://github.com/babel/babel"},{"name":"webpack-dev-server","old_version":"4.15.2","new_version":"5.2.1","repository_url":"https://github.com/webpack/webpack-dev-server"},{"name":"fast-xml-parser","old_version":"4.5.1","new_version":"5.3.6","repository_url":"https://github.com/NaturalIntelligence/fast-xml-parser"},{"name":"markdown-it","old_version":"13.0.2","new_version":"14.1.1","repository_url":"https://github.com/markdown-it/markdown-it"},{"name":"next","old_version":"13.5.8","new_version":"15.5.10","repository_url":"https://github.com/vercel/next.js"},{"name":"@smithy/config-resolver","old_version":"4.0.1","new_version":"4.4.8","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"bn.js","old_version":"4.12.1","new_version":"4.12.3","repository_url":"https://github.com/indutny/bn.js"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"http-proxy-middleware","old_version":"2.0.7","new_version":"2.0.9","repository_url":"https://github.com/chimurai/http-proxy-middleware"},{"name":"jws","old_version":"3.2.2","new_version":"3.2.3","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"min-document","old_version":"2.19.0","new_version":"2.19.2","repository_url":"https://github.com/Raynos/min-document"},{"name":"node-forge","old_version":"1.3.1","new_version":"1.3.3","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"pbkdf2","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/browserify/pbkdf2"},{"name":"qs","old_version":"6.5.3","new_version":"6.5.5","repository_url":"https://github.com/ljharb/qs"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"tar-fs","old_version":"2.1.2","new_version":"2.1.4","repository_url":"https://github.com/mafintosh/tar-fs"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [axios](https://github.com/axios/axios) | `0.27.2` | `0.30.3` |\n| [dompurify](https://github.com/cure53/DOMPurify) | `2.5.8` | `3.2.4` |\n| [image-size](https://github.com/image-size/image-size) | `1.2.0` | `1.2.1` |\n| [langchain](https://github.com/langchain-ai/langchainjs) | `0.1.37` | `0.2.19` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [nodemailer](https://github.com/nodemailer/nodemailer) | `6.9.16` | `7.0.11` |\n| [private-ip](https://github.com/frenchbread/private-ip) | `2.3.4` | `3.0.2` |\n| [typeorm](https://github.com/typeorm/typeorm) | `0.3.20` | `0.3.26` |\n| [webpack](https://github.com/webpack/webpack) | `5.97.1` | `5.104.1` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.26.0` | `7.26.10` |\n| [webpack-dev-server](https://github.com/webpack/webpack-dev-server) | `4.15.2` | `5.2.1` |\n| [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) | `4.5.1` | `5.3.6` |\n| [markdown-it](https://github.com/markdown-it/markdown-it) | `13.0.2` | `14.1.1` |\n| [next](https://github.com/vercel/next.js) | `13.5.8` | `15.5.10` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `4.0.1` | `4.4.8` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [bn.js](https://github.com/indutny/bn.js) | `4.12.1` | `4.12.3` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) | `2.0.7` | `2.0.9` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [min-document](https://github.com/Raynos/min-document) | `2.19.0` | `2.19.2` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [pbkdf2](https://github.com/browserify/pbkdf2) | `3.1.2` | `3.1.5` |\n| [qs](https://github.com/ljharb/qs) | `6.5.3` | `6.5.5` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `2.1.2` | `2.1.4` |\n\nBumps the npm_and_yarn group with 5 updates in the /packages/api directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [axios](https://github.com/axios/axios) | `0.27.2` | `1.13.5` |\n| [dompurify](https://github.com/cure53/DOMPurify) | `2.5.8` | `3.3.1` |\n| [langchain](https://github.com/langchain-ai/langchainjs) | `0.1.37` | `1.2.26` |\n| [nodemailer](https://github.com/nodemailer/nodemailer) | `6.10.1` | `8.0.1` |\n| [private-ip](https://github.com/frenchbread/private-ip) | `2.3.4` | `3.0.2` |\n\nBumps the npm_and_yarn group with 1 update in the /packages/content-fetch directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /packages/content-handler directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /packages/discover directory: [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser).\nBumps the npm_and_yarn group with 1 update in the /packages/pdf-handler directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /packages/rule-handler directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 1 update in the /packages/text-to-speech directory: [axios](https://github.com/axios/axios).\nBumps the npm_and_yarn group with 2 updates in the /packages/web directory: [markdown-it](https://github.com/markdown-it/markdown-it) and [next](https://github.com/vercel/next.js).\nBumps the npm_and_yarn group with 6 updates in the /pkg/admin directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [typeorm](https://github.com/typeorm/typeorm) | `0.2.34` | `0.3.26` |\n| [@babel/runtime](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime) | `7.14.6` | `7.28.6` |\n| [diff](https://github.com/kpdecker/jsdiff) | `4.0.2` | `4.0.4` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n\nBumps the npm_and_yarn group with 2 updates in the /pkg/bull-queue-admin directory: [lodash](https://github.com/lodash/lodash) and [js-yaml](https://github.com/nodeca/js-yaml).\nBumps the npm_and_yarn group with 3 updates in the /pkg/extension directory: [lodash](https://github.com/lodash/lodash), [webpack](https://github.com/webpack/webpack) and [jws](https://github.com/brianloveswords/node-jws).\nBumps the npm_and_yarn group with 2 updates in the /pkg/extension-v3 directory: [nanoid](https://github.com/ai/nanoid) and [webpack](https://github.com/webpack/webpack).\n\nUpdates `axios` from 0.27.2 to 0.30.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease notes - v0.30.3\u003c/h2\u003e\n\u003cp\u003eThis is a critical security maintenance release for the v0.x branch. It addresses a high-priority vulnerability involving prototype pollution that could lead to a Denial of Service (DoS).\u003c/p\u003e\n\u003cp\u003eRecommendation: All users currently on the 0.x release line should upgrade to this version immediately to ensure environment stability.\u003c/p\u003e\n\u003ch2\u003e🛡️ Security Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBackport: Fix DoS via \u003cstrong\u003eproto\u003c/strong\u003e key in merge config\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003ePatched a vulnerability where specifically crafted configuration objects using the \u003cstrong\u003eproto\u003c/strong\u003e key could cause a Denial of Service during the merge process. - \u003cem\u003eby \u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e in [PR \u003ca href=\"https://redirect.github.com/axios/axios/issues/7388\"\u003e#7388\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/axios/axios/pull/7388\"\u003eaxios/axios#7388\u003c/a\u003e)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚙️ Maintenance \u0026amp; CI\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eCI Infrastructure Update\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated Continuous Integration workflows for the v0.x branch to maintain long-term support and build reliability. - \u003cem\u003eby \u003ca href=\"https://github.com/jasonsaayman\"\u003e\u003ccode\u003e@​jasonsaayman\u003c/code\u003e\u003c/a\u003e in [PR \u003ca href=\"https://redirect.github.com/axios/axios/issues/7407\"\u003e#7407\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/axios/axios/pull/7407\"\u003eaxios/axios#7407\u003c/a\u003e)\u003c/em\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cp\u003eConfiguration Merging Behavior:\u003c/p\u003e\n\u003cp\u003eAs part of the security fix, Axios now restricts the merging of the \u003cstrong\u003eproto\u003c/strong\u003e key within configuration objects. If your codebase relies on unconventional deep-merging patterns that target the object prototype via Axios config, those operations will now be blocked. This is a necessary change to prevent prototype pollution.\u003c/p\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.2...v0.30.3\"\u003ev0.30.2...v0.30.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.30.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u003ccode\u003emaxContentLength\u003c/code\u003e vulnerability fix to v0.x by \u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/7034\"\u003eaxios/axios#7034\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FeBe95\"\u003e\u003ccode\u003e@​FeBe95\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/axios/axios/pull/7034\"\u003eaxios/axios#7034\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.1...v0.30.2\"\u003ehttps://github.com/axios/axios/compare/v0.30.1...v0.30.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.30.1\u003c/h2\u003e\n\u003ch2\u003eRelease notes:\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump form-data from 4.0.0 to 4.0.4 for v0.x by \u003ca href=\"https://github.com/wolandec\"\u003e\u003ccode\u003e@​wolandec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6978\"\u003eaxios/axios#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wolandec\"\u003e\u003ccode\u003e@​wolandec\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6978\"\u003eaxios/axios#6978\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v0.30.0...v0.30.1\"\u003ehttps://github.com/axios/axios/compare/v0.30.0...v0.30.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.30.0\u003c/h2\u003e\n\u003ch2\u003eRelease notes:\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: modify log while request is aborted by \u003ca href=\"https://github.com/mori5321\"\u003e\u003ccode\u003e@​mori5321\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/4917\"\u003eaxios/axios#4917\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update CHANGELOG.md for v0.x by \u003ca href=\"https://github.com/TehZarathustra\"\u003e\u003ccode\u003e@​TehZarathustra\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6271\"\u003eaxios/axios#6271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: modify upgrade guide for 0.28.1's breaking change by \u003ca href=\"https://github.com/nafeger\"\u003e\u003ccode\u003e@​nafeger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/axios/axios/pull/6787\"\u003eaxios/axios#6787\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f53bcf6c3747652c9d3811dc0bbcd3674e21567a\"\u003e\u003ccode\u003ef53bcf6\u003c/code\u003e\u003c/a\u003e chore: release 0.30.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3ddccd3bf478c8aab863f2fdd4a52461849eab45\"\u003e\u003ccode\u003e3ddccd3\u003c/code\u003e\u003c/a\u003e chore: remove publish as this wont work\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/9ef39d07245286df678c1a16e7b5769610ba8326\"\u003e\u003ccode\u003e9ef39d0\u003c/code\u003e\u003c/a\u003e chore: try with npm token\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/4775de601df704d8d4e7336a57b08a2e21de8ff4\"\u003e\u003ccode\u003e4775de6\u003c/code\u003e\u003c/a\u003e chore: fix version scheme\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/f96f26b2014404534424e765b83a1dbbd8cb091f\"\u003e\u003ccode\u003ef96f26b\u003c/code\u003e\u003c/a\u003e chore: fix issues with using replace\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/ead45c20b05ab32c26cb63d0f7a20e8b123d9f68\"\u003e\u003ccode\u003eead45c2\u003c/code\u003e\u003c/a\u003e chore: update the publish workflow to run on tag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/8119265e6ce71898d19448d30356789cccc2de56\"\u003e\u003ccode\u003e8119265\u003c/code\u003e\u003c/a\u003e chore: tag version as legacy on v0.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/995498519881c23ba97b42dda16bcadc0e4791a7\"\u003e\u003ccode\u003e9954985\u003c/code\u003e\u003c/a\u003e chore: dispatch for first time\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/3f8b70fdfc7903aa137ea4f6539cd00f5df97afb\"\u003e\u003ccode\u003e3f8b70f\u003c/code\u003e\u003c/a\u003e chore: final rename\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/axios/axios/commit/c66558430e71cf0c113a2969355cde25cb159fff\"\u003e\u003ccode\u003ec665584\u003c/code\u003e\u003c/a\u003e chore: revert naming\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/axios/axios/compare/v0.27.2...v0.30.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dompurify` from 2.5.8 to 3.2.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cure53/DOMPurify/releases\"\u003edompurify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDOMPurify 3.2.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a conditional and config dependent mXSS-style \u003ca href=\"https://nsysean.github.io/posts/dompurify-323-bypass/\"\u003ebypass\u003c/a\u003e reported by \u003ca href=\"https://github.com/nsysean\"\u003e\u003ccode\u003e@​nsysean\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded a new feature to allow specific hook removal, thanks \u003ca href=\"https://github.com/davecardwell\"\u003e\u003ccode\u003e@​davecardwell\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded \u003cem\u003epurify.js\u003c/em\u003e and \u003cem\u003epurify.min.js\u003c/em\u003e to exports, thanks \u003ca href=\"https://github.com/Aetherinox\"\u003e\u003ccode\u003e@​Aetherinox\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded better logic in case no window object is president, thanks \u003ca href=\"https://github.com/yehuya\"\u003e\u003ccode\u003e@​yehuya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated some dependencies called out by dependabot\u003c/li\u003e\n\u003cli\u003eUpdated license files etc to show the correct year\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.2.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed two conditional sanitizer bypasses discovered by \u003ca href=\"https://github.com/parrot409\"\u003e\u003ccode\u003e@​parrot409\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://x.com/slonser_\"\u003e\u003ccode\u003e@​Slonser\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated the attribute clobbering checks to prevent future bypasses, thanks \u003ca href=\"https://github.com/parrot409\"\u003e\u003ccode\u003e@​parrot409\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a possible bypass in case a rather specific config for custom elements is set, thanks \u003ca href=\"https://github.com/yaniv-git\"\u003e\u003ccode\u003e@​yaniv-git\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed several minor issues with the type definitions, thanks again \u003ca href=\"https://github.com/reduckted\"\u003e\u003ccode\u003e@​reduckted\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a minor issue with the types reference for trusted types, thanks \u003ca href=\"https://github.com/reduckted\"\u003e\u003ccode\u003e@​reduckted\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a minor problem with the template detection regex on some systems, thanks \u003ca href=\"https://github.com/svdb99\"\u003e\u003ccode\u003e@​svdb99\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed several minor issues with the type definitions, thanks \u003ca href=\"https://github.com/reduckted\"\u003e\u003ccode\u003e@​reduckted\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/ghiscoding\"\u003e\u003ccode\u003e@​ghiscoding\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/asamuzaK\"\u003e\u003ccode\u003e@​asamuzaK\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/MiniDigger\"\u003e\u003ccode\u003e@​MiniDigger\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with non-minified dist files and order of imports, thanks \u003ca href=\"https://github.com/reduckted\"\u003e\u003ccode\u003e@​reduckted\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded type declarations, thanks \u003ca href=\"https://github.com/reduckted\"\u003e\u003ccode\u003e@​reduckted\u003c/code\u003e\u003c/a\u003e , \u003ca href=\"https://github.com/philmayfield\"\u003e\u003ccode\u003e@​philmayfield\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/aloisklink\"\u003e\u003ccode\u003e@​aloisklink\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/ssi02014\"\u003e\u003ccode\u003e@​ssi02014\u003c/code\u003e\u003c/a\u003e and others\u003c/li\u003e\n\u003cli\u003eFixed a minor issue with the handling of hooks, thanks \u003ca href=\"https://github.com/kevin-mizu\"\u003e\u003ccode\u003e@​kevin-mizu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with comment detection and possible bypasses with specific config settings, thanks \u003ca href=\"https://github.com/masatokinugawa\"\u003e\u003ccode\u003e@​masatokinugawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed several smaller typos in documentation and test \u0026amp; build files, thanks \u003ca href=\"https://github.com/christianhg\"\u003e\u003ccode\u003e@​christianhg\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded better support for Angular compiler, thanks \u003ca href=\"https://github.com/jeroen1602\"\u003e\u003ccode\u003e@​jeroen1602\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded several new attributes to HTML and SVG allow-list, thanks \u003ca href=\"https://github.com/Gigabyte5671\"\u003e\u003ccode\u003e@​Gigabyte5671\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/Rotzbua\"\u003e\u003ccode\u003e@​Rotzbua\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemoved the \u003ccode\u003eforeignObject\u003c/code\u003e element from the list of HTML entry-points, thanks \u003ca href=\"https://github.com/masatokinugawa\"\u003e\u003ccode\u003e@​masatokinugawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumped several dependencies to be more up to date\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with the execution logic of attribute hooks to prevent bypasses, thanks \u003ca href=\"https://github.com/kevin-mizu\"\u003e\u003ccode\u003e@​kevin-mizu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed an issue with element removal leading to uncaught errors through DOM Clobbering, thanks \u003ca href=\"https://github.com/realansgar\"\u003e\u003ccode\u003e@​realansgar\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a minor problem with the bower file pointing to the wrong dist path\u003c/li\u003e\n\u003cli\u003eFixed several minor typos in docs, comments and comment blocks, thanks \u003ca href=\"https://github.com/Rotzbua\"\u003e\u003ccode\u003e@​Rotzbua\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdated several development dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.1.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed a minor issue with the dist paths in \u003ccode\u003ebower.js\u003c/code\u003e, thanks \u003ca href=\"https://github.com/HakumenNC\"\u003e\u003ccode\u003e@​HakumenNC\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a minor issue with sanitizing HTML coming from copy\u0026amp;paste Word content, thanks \u003ca href=\"https://github.com/kakao-bishop-cho\"\u003e\u003ccode\u003e@​kakao-bishop-cho\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDOMPurify 3.1.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue with the recently implemented \u003ccode\u003eisNaN\u003c/code\u003e checks, thanks \u003ca href=\"https://github.com/tulach\"\u003e\u003ccode\u003e@​tulach\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded several new popover attributes to allow-list, thanks \u003ca href=\"https://github.com/Gigabyte5671\"\u003e\u003ccode\u003e@​Gigabyte5671\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed the tests and adjusted the test runner to cover all branches\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/ec29e65f3675077c1a78e6edcab97f797f004a2e\"\u003e\u003ccode\u003eec29e65\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1062\"\u003e#1062\u003c/a\u003e from cure53/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/1c1b1838625851939d4b86436feeb3e3ccb7dbb6\"\u003e\u003ccode\u003e1c1b183\u003c/code\u003e\u003c/a\u003e chore: Preparing 3.2.4 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/d18ffcb554e0001748865da03ac75dd7829f0f02\"\u003e\u003ccode\u003ed18ffcb\u003c/code\u003e\u003c/a\u003e fix: Changed the template literal regex to avoid a config-dependent bypass\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/0d64d2b12f9ecaa28899c60aba0b9ed5072c4d93\"\u003e\u003ccode\u003e0d64d2b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1060\"\u003e#1060\u003c/a\u003e from yehuya/initializeTestImprovements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/9ad79331566e0671788b120cc1f682f4e7f33f44\"\u003e\u003ccode\u003e9ad7933\u003c/code\u003e\u003c/a\u003e tests: DOMPurify custom window tests improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/72760ca8ee425c3129420390d4c10afe698ff2fb\"\u003e\u003ccode\u003e72760ca\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/cure53/DOMPurify/issues/1059\"\u003e#1059\u003c/a\u003e from yehuya/fixMissingWindowElement\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/bc72d44b2e3cec00d8ef2427869d03cb668969fa\"\u003e\u003ccode\u003ebc72d44\u003c/code\u003e\u003c/a\u003e Fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/363a89dd3a051b72334cd4d0c867616fdc4ee40d\"\u003e\u003ccode\u003e363a89d\u003c/code\u003e\u003c/a\u003e fix: handle undefined Element in DOMPurify initialization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/f41b45df18a9666a50c1ad2662cee259230cfef4\"\u003e\u003ccode\u003ef41b45d\u003c/code\u003e\u003c/a\u003e Update LICENSE\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cure53/DOMPurify/commit/b25bf26d674ff4db9074cef01fc51490cb1369a0\"\u003e\u003ccode\u003eb25bf26\u003c/code\u003e\u003c/a\u003e Update README.md\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cure53/DOMPurify/compare/2.5.8...3.2.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `image-size` from 1.2.0 to 1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/image-size/image-size/releases\"\u003eimage-size's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.2.1\u003c/h2\u003e\n\u003ch2\u003eFixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix potential Denial of Service via specially crafted payloads in \u003ca href=\"https://github.com/image-size/image-size/commit/640a67d9e821baee4cb596def8db00627f649dfc\"\u003ehttps://github.com/image-size/image-size/commit/640a67d9e821baee4cb596def8db00627f649dfc\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/image-size/image-size/compare/v1.2.0...v1.2.1\"\u003ehttps://github.com/image-size/image-size/compare/v1.2.0...v1.2.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/image-size/image-size/commit/a4178fbb334ddb22d94cb4228ed597c24fd02e10\"\u003e\u003ccode\u003ea4178fb\u003c/code\u003e\u003c/a\u003e 1.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/image-size/image-size/commit/640a67d9e821baee4cb596def8db00627f649dfc\"\u003e\u003ccode\u003e640a67d\u003c/code\u003e\u003c/a\u003e fix potential Denial of Service via specially crafted payloads\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/image-size/image-size/compare/v1.2.0...v1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `langchain` from 0.1.37 to 0.2.19\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/d5ba68dfdb91d5f5ed701952d486667526902ece\"\u003e\u003ccode\u003ed5ba68d\u003c/code\u003e\u003c/a\u003e chore(langchain): Release 0.2.19 (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6742\"\u003e#6742\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/26f75b69b85917755b6fb1cfca8d6e003825b7a6\"\u003e\u003ccode\u003e26f75b6\u003c/code\u003e\u003c/a\u003e chore(langchain): Release 0.2.19\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/7fbae88bb5c7bbeea4d2c885981591fc9fb29467\"\u003e\u003ccode\u003e7fbae88\u003c/code\u003e\u003c/a\u003e fix(ci): Fix ci (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6741\"\u003e#6741\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/87ce5607407511705cd2cad0eb4c710208aead65\"\u003e\u003ccode\u003e87ce560\u003c/code\u003e\u003c/a\u003e fix(ci): Fix esbuild tests (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6739\"\u003e#6739\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/a8ff65dea4b0e67753fa1ccaa87b9ba77fa2316a\"\u003e\u003ccode\u003ea8ff65d\u003c/code\u003e\u003c/a\u003e fix(ci): Fix cf-workers export test (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6738\"\u003e#6738\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/1010d1c2f10c876295b47bd831b6bec5136731cc\"\u003e\u003ccode\u003e1010d1c\u003c/code\u003e\u003c/a\u003e fix(ci): Fix cf exports test (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6737\"\u003e#6737\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/a0fad77d6b569e5872bd4a9d33be0c0785e538a9\"\u003e\u003ccode\u003ea0fad77\u003c/code\u003e\u003c/a\u003e fix(langchain): Fix local file store traversal issue (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6736\"\u003e#6736\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/08092cdd6c2e8a443acf55e650ca0e8a185b02a9\"\u003e\u003ccode\u003e08092cd\u003c/code\u003e\u003c/a\u003e google-common[major]: Media manager (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/5835\"\u003e#5835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/6a723fa180707724412711846fa4053431f3cf41\"\u003e\u003ccode\u003e6a723fa\u003c/code\u003e\u003c/a\u003e docs: Update wording in tool choice guide (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6732\"\u003e#6732\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/langchain-ai/langchainjs/commit/630283bc5ba09fdff7a8a93da420ede313313e5c\"\u003e\u003ccode\u003e630283b\u003c/code\u003e\u003c/a\u003e docs: Fix typo in chatbot tutorial (\u003ca href=\"https://redirect.github.com/langchain-ai/langchainjs/issues/6730\"\u003e#6730\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/langchain-ai/langchainjs/compare/0.1.37...0.2.19\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nodemailer` from 6.9.16 to 7.0.11\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodemailer/nodemailer/releases\"\u003enodemailer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.11\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.10...v7.0.11\"\u003e7.0.11\u003c/a\u003e (2025-11-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eprevent stack overflow DoS in addressparser with deeply nested groups (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003eb61b9c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.9...v7.0.10\"\u003e7.0.10\u003c/a\u003e (2025-10-23)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncrease data URI size limit from 100KB to 50MB and preserve content type (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e28dbf3f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.8...v7.0.9\"\u003e7.0.9\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e Trying to fix release proecess by upgrading Node version in runner (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/579fce4683eb588891613a6c9a00d8092e8c62d1\"\u003e579fce4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.7...v7.0.8\"\u003e7.0.8\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e flatten nested groups per RFC 5322 (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/8f8a77c67f0ba94ddf4e16c68f604a5920fb5d26\"\u003e8f8a77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.7\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.6...v7.0.7\"\u003e7.0.7\u003c/a\u003e (2025-10-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e Fixed addressparser handling of quoted nested email addresses (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626\"\u003e1150d99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edns:\u003c/strong\u003e add memory leak prevention for DNS cache (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/0240d6795ded6d8008d102161a729f120b6d786a\"\u003e0240d67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elinter:\u003c/strong\u003e Updated eslint and created prettier formatting task (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/df13b7487e368acded35e45d0887d23c89c9177a\"\u003edf13b74\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefresh expired DNS cache on error (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1759\"\u003e#1759\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/ea0fc5a6633a3546f4b00fcf2f428e9ca732cdb6\"\u003eea0fc5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve linter errors in DNS cache tests (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3b8982c1f24508089a8757b74039000a4498b158\"\u003e3b8982c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6\"\u003e7.0.6\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md\"\u003enodemailer's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.10...v7.0.11\"\u003e7.0.11\u003c/a\u003e (2025-11-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eprevent stack overflow DoS in addressparser with deeply nested groups (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003eb61b9c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.9...v7.0.10\"\u003e7.0.10\u003c/a\u003e (2025-10-23)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncrease data URI size limit from 100KB to 50MB and preserve content type (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e28dbf3f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.8...v7.0.9\"\u003e7.0.9\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e Trying to fix release proecess by upgrading Node version in runner (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/579fce4683eb588891613a6c9a00d8092e8c62d1\"\u003e579fce4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.7...v7.0.8\"\u003e7.0.8\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e flatten nested groups per RFC 5322 (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/8f8a77c67f0ba94ddf4e16c68f604a5920fb5d26\"\u003e8f8a77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.6...v7.0.7\"\u003e7.0.7\u003c/a\u003e (2025-10-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e Fixed addressparser handling of quoted nested email addresses (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626\"\u003e1150d99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edns:\u003c/strong\u003e add memory leak prevention for DNS cache (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/0240d6795ded6d8008d102161a729f120b6d786a\"\u003e0240d67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elinter:\u003c/strong\u003e Updated eslint and created prettier formatting task (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/df13b7487e368acded35e45d0887d23c89c9177a\"\u003edf13b74\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefresh expired DNS cache on error (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1759\"\u003e#1759\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/ea0fc5a6633a3546f4b00fcf2f428e9ca732cdb6\"\u003eea0fc5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve linter errors in DNS cache tests (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3b8982c1f24508089a8757b74039000a4498b158\"\u003e3b8982c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6\"\u003e7.0.6\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eencoder:\u003c/strong\u003e avoid silent data loss by properly flushing trailing base64 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1747\"\u003e#1747\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/01ae76f2cfe991c0c3fe80170f236da60531496b\"\u003e01ae76f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehandle multiple XOAUTH2 token requests correctly (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1754\"\u003e#1754\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/dbe00286351cddf012726a41a96ae613d30a34ee\"\u003edbe0028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReDoS vulnerability in parseDataURI and _processDataUrl (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1755\"\u003e#1755\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/90b3e24d23929ebf9f4e16261049b40ee4055a39\"\u003e90b3e24\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.4...v7.0.5\"\u003e7.0.5\u003c/a\u003e (2025-07-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3d17dbec49ab3e3f0e13e62871e5534be5b99994\"\u003e\u003ccode\u003e3d17dbe\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.11 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1783\"\u003e#1783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/15879f8bd5a94fe608fd7cf1d3142de14527eadf\"\u003e\u003ccode\u003e15879f8\u003c/code\u003e\u003c/a\u003e Bumped dev dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003e\u003ccode\u003eb61b9c0\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow DoS in addressparser with deeply nested groups\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/4175e4baf92ffc4e20791a11fc0886025228a2ac\"\u003e\u003ccode\u003e4175e4b\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.10 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1776\"\u003e#1776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/d882ccfe8d37723e7017c1966608dcf8217d8a82\"\u003e\u003ccode\u003ed882ccf\u003c/code\u003e\u003c/a\u003e Merge branch 'master' of github.com:nodemailer/nodemailer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1d7e4f786bccdc3e0a1bf0140d07ce5aaf29d82a\"\u003e\u003ccode\u003e1d7e4f7\u003c/code\u003e\u003c/a\u003e Bumped deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/10bd871656b331a674feabbcfc1d6363918cb244\"\u003e\u003ccode\u003e10bd871\u003c/code\u003e\u003c/a\u003e chore: correct typo in variable name (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1773\"\u003e#1773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e\u003ccode\u003e28dbf3f\u003c/code\u003e\u003c/a\u003e fix: Increase data URI size limit from 100KB to 50MB and preserve content type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/92ae1c49e3a33767996db9ddfd04784a7b9595d7\"\u003e\u003ccode\u003e92ae1c4\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.9 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1769\"\u003e#1769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/c675d9e7e57d0d90bde7d71afb0b2739fc071233\"\u003e\u003ccode\u003ec675d9e\u003c/code\u003e\u003c/a\u003e Merge branch 'master' of github.com:nodemailer/nodemailer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v6.9.16...v7.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for nodemailer since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `private-ip` from 2.3.4 to 3.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/frenchbread/private-ip/releases\"\u003eprivate-ip's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eprivate-ip v3.0.2\u003c/h2\u003e\n\u003ch3\u003echanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdated \u003ccode\u003eyarn.lock\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eadded types to exports map (\u003ca href=\"https://github.com/frenchbread/private-ip/commit/346867afe100d442f5d56233b0d93040fb682d2f\"\u003e\u003ccode\u003e346867a\u003c/code\u003e\u003c/a\u003e - thanks \u003ca href=\"https://github.com/achingbrain\"\u003e\u003ccode\u003e@​achingbrain\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eprivate-ip v3.0.1\u003c/h2\u003e\n\u003ch3\u003echanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump \u003ccode\u003eava\u003c/code\u003e to \u003ccode\u003e5.3.1\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003ebump \u003ccode\u003etypescript\u003c/code\u003e to \u003ccode\u003e4.9.5\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003ebump \u003ccode\u003eipaddr.js\u003c/code\u003e to \u003ccode\u003e2.1.0\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eprivate-ip v3.0.0\u003c/h2\u003e\n\u003ch2\u003ebreaking changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003econverted package to \u003ca href=\"https://gist.github.com/sindresorhus/a39789f98801d908bbc7ff3ecc99d99c\"\u003eESM\u003c/a\u003e. Make sure it is supported in your project if using \u003ccode\u003e\u0026gt; v3.0.0\u003c/code\u003e. [\u003ca href=\"https://github.com/frenchbread/private-ip/commit/90ee0ce9980df28e2de28e93d646f31f101a83fc\"\u003e\u003ccode\u003e90ee0ce\u003c/code\u003e\u003c/a\u003e - thanks \u003ca href=\"https://github.com/tuyennhv\"\u003e\u003ccode\u003e@​tuyennhv\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eother changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003emigrated to \u003ccode\u003e@chainsafe/is-ip\u003c/code\u003e (ref: \u003ca href=\"https://redirect.github.com/ChainSafe/is-ip/pull/1\"\u003eChainSafe/is-ip#1\u003c/a\u003e). [\u003ca href=\"https://github.com/frenchbread/private-ip/commit/9f477dd4dcd633afa553322677ec019db997f428\"\u003e\u003ccode\u003e9f477dd\u003c/code\u003e\u003c/a\u003e - thanks to \u003ca href=\"https://github.com/tuyennhv\"\u003e\u003ccode\u003e@​tuyennhv\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/wemeetagain\"\u003e\u003ccode\u003e@​wemeetagain\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/9d984ed3cd6d17d1d5a0f0d358c13c4c7a8996dd\"\u003e\u003ccode\u003e9d984ed\u003c/code\u003e\u003c/a\u003e 3.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/8af3a74144886b020f853e23cf62c7feb2ea672b\"\u003e\u003ccode\u003e8af3a74\u003c/code\u003e\u003c/a\u003e update yarn.lock\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/72c3e8c0fe7aa27132ac4b787910225cee33589f\"\u003e\u003ccode\u003e72c3e8c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/frenchbread/private-ip/issues/24\"\u003e#24\u003c/a\u003e from achingbrain/fix/add-types-to-exports-map\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/346867afe100d442f5d56233b0d93040fb682d2f\"\u003e\u003ccode\u003e346867a\u003c/code\u003e\u003c/a\u003e fix: add types to exports map\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/009c6867353439af137225495f9922383bdbb54a\"\u003e\u003ccode\u003e009c686\u003c/code\u003e\u003c/a\u003e 3.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/9c8b4f6faad37ab1f43296cab9d67a5ea8f79157\"\u003e\u003ccode\u003e9c8b4f6\u003c/code\u003e\u003c/a\u003e upgrade dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/5568f2c4063fb076fa544a26b4569bb1cb6f4015\"\u003e\u003ccode\u003e5568f2c\u003c/code\u003e\u003c/a\u003e 3.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/5f1c56437d4b8d6ada3e3f6f09da92184897019e\"\u003e\u003ccode\u003e5f1c564\u003c/code\u003e\u003c/a\u003e update dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/7b3697da94d02b6e733c281838252328047d5b67\"\u003e\u003ccode\u003e7b3697d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/frenchbread/private-ip/issues/19\"\u003e#19\u003c/a\u003e from frenchbread/hotfix/typing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frenchbread/private-ip/commit/ab988d1961105187fbbdbee51f24610803b86d64\"\u003e\u003ccode\u003eab988d1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/frenchbread/private-ip/issues/21\"\u003e#21\u003c/a\u003e from tuyennhv/tuyen/is_ip_4.0.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/frenchbread/private-ip/compare/2.3.4...3.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `typeorm` from 0.3.20 to 0.3.26\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typeorm/typeorm/releases\"\u003etypeorm's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.3.26\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNotes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eWhen using MySQL, TypeORM now connects using \u003ccode\u003estringifyObjects: true\u003c/code\u003e, in order to avoid a potential security vulnerability\nin the mysql/mysql2 client libraries. You can revert to the old behavior by setting \u003ccode\u003econnectionOptions.extra.stringifyObjects = false\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eWhen using SAP HANA, TypeORM now uses the built-in pool from the \u003ccode\u003e@sap/hana-client\u003c/code\u003e library. The deprecated \u003ccode\u003ehdb-pool\u003c/code\u003e\nis no longer necessary and can be removed. See \u003ca href=\"https://typeorm.io/docs/drivers/sap/#data-source-options\"\u003ehttps://typeorm.io/docs/drivers/sap/#data-source-options\u003c/a\u003e for the new pool options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Remove manual trigger on publish workflow by \u003ca href=\"https://github.com/michaelbromley\"\u003e\u003ccode\u003e@​michaelbromley\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11536\"\u003etypeorm/typeorm#11536\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest(ci): force mocha to exit on stuck process by \u003ca href=\"https://github.com/OSA413\"\u003e\u003ccode\u003e@​OSA413\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11538\"\u003etypeorm/typeorm#11538\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(oracle): pass duplicated parameters correctly to the client when executing a query by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11537\"\u003etypeorm/typeorm#11537\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(sap): add support for REAL_VECTOR and HALF_VECTOR data types in SAP HANA Cloud by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11526\"\u003etypeorm/typeorm#11526\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add stricter type-checking and improve event loop handling by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11540\"\u003etypeorm/typeorm#11540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: avoid unnecessary count on getManyAndCount by \u003ca href=\"https://github.com/EQuincerot\"\u003e\u003ccode\u003e@​EQuincerot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11524\"\u003etypeorm/typeorm#11524\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(sap): use the native driver for connection pooling by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11520\"\u003etypeorm/typeorm#11520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: support for better-sqlite3 v12 by \u003ca href=\"https://github.com/mohd-akram\"\u003e\u003ccode\u003e@​mohd-akram\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11557\"\u003etypeorm/typeorm#11557\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: preserve \u003ccode\u003euseIndex\u003c/code\u003e when cloning a QueryExpressionMap (or a QueryBuilder) by \u003ca href=\"https://github.com/kettui\"\u003e\u003ccode\u003e@​kettui\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/10679\"\u003etypeorm/typeorm#10679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: change test badge from \u003ccode\u003etest.yml\u003c/code\u003e to \u003ccode\u003ecommit-validation.yml\u003c/code\u003e by \u003ca href=\"https://github.com/albasyir\"\u003e\u003ccode\u003e@​albasyir\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11560\"\u003etypeorm/typeorm#11560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: do not create junction table metadata when it already exists by \u003ca href=\"https://github.com/ragrag\"\u003e\u003ccode\u003e@​ragrag\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11114\"\u003etypeorm/typeorm#11114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mysql): support AnalyticDB returning version() column name in getVersion() by \u003ca href=\"https://github.com/rhydian0x\"\u003e\u003ccode\u003e@​rhydian0x\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11555\"\u003etypeorm/typeorm#11555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve array modification bug in QueryRunner drop methods \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11563\"\u003e#11563\u003c/a\u003e by \u003ca href=\"https://github.com/taina0407\"\u003e\u003ccode\u003e@​taina0407\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11564\"\u003etypeorm/typeorm#11564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mysql): set \u003ccode\u003estringifyObjects\u003c/code\u003e implicitly by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11574\"\u003etypeorm/typeorm#11574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: separate driver-specific documentation by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11581\"\u003etypeorm/typeorm#11581\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix redirect to mongodb page by \u003ca href=\"https://github.com/alumni\"\u003e\u003ccode\u003e@​alumni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11584\"\u003etypeorm/typeorm#11584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(11528): add Redis 5.x support with backward compatibility wite peer dependency to allow by \u003ca href=\"https://github.com/par333k\"\u003e\u003ccode\u003e@​par333k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11585\"\u003etypeorm/typeorm#11585\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: regtype is not supported in aurora serverless v2 by \u003ca href=\"https://github.com/ArsenyYankovsky\"\u003e\u003ccode\u003e@​ArsenyYankovsky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11568\"\u003etypeorm/typeorm#11568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(platform[web worker]): improve globalThis variable retrieval for … by \u003ca href=\"https://github.com/dasoncheng\"\u003e\u003ccode\u003e@​dasoncheng\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11495\"\u003etypeorm/typeorm#11495\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: added \u003ccode\u003e@piying/orm\u003c/code\u003e extension to readme by \u003ca href=\"https://github.com/wszgrcy\"\u003e\u003ccode\u003e@​wszgrcy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11596\"\u003etypeorm/typeorm#11596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Fix \u003ccode\u003ereload\u003c/code\u003e option typo by \u003ca href=\"https://github.com/radovanovic-stevan\"\u003e\u003ccode\u003e@​radovanovic-stevan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11601\"\u003etypeorm/typeorm#11601\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add entity mode virtual-property by \u003ca href=\"https://github.com/wszgrcy\"\u003e\u003ccode\u003e@​wszgrcy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11597\"\u003etypeorm/typeorm#11597\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Release v0.3.26 by \u003ca href=\"https://github.com/michaelbromley\"\u003e\u003ccode\u003e@​michaelbromley\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11602\"\u003etypeorm/typeorm#11602\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/EQuincerot\"\u003e\u003ccode\u003e@​EQuincerot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11524\"\u003etypeorm/typeorm#11524\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kettui\"\u003e\u003ccode\u003e@​kettui\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/10679\"\u003etypeorm/typeorm#10679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ragrag\"\u003e\u003ccode\u003e@​ragrag\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11114\"\u003etypeorm/typeorm#11114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rhydian0x\"\u003e\u003ccode\u003e@​rhydian0x\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11555\"\u003etypeorm/typeorm#11555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/taina0407\"\u003e\u003ccode\u003e@​taina0407\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11564\"\u003etypeorm/typeorm#11564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/par333k\"\u003e\u003ccode\u003e@​par333k\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11585\"\u003etypeorm/typeorm#11585\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dasoncheng\"\u003e\u003ccode\u003e@​dasoncheng\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11495\"\u003etypeorm/typeorm#11495\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wszgrcy\"\u003e\u003ccode\u003e@​wszgrcy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11596\"\u003etypeorm/typeorm#11596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/radovanovic-stevan\"\u003e\u003ccode\u003e@​radovanovic-stevan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/typeorm/typeorm/pull/11601\"\u003etypeorm/typeorm#11601\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/typeorm/typeorm/compare/0.3.25...0.3.26\"\u003ehttps://github.com/typeorm/typeorm/compare/0.3.25...0.3.26\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.3.25\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/typeorm/typeorm/blob/master/CHANGELOG.md\"\u003etypeorm's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/typeorm/typeorm/compare/0.3.25...0.3.26\"\u003e0.3.26\u003c/a\u003e (2025-08-16)\u003c/h2\u003e\n\u003cp\u003eNotes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eWhen using MySQL, TypeORM now connects using \u003ccode\u003estringifyObjects: true\u003c/code\u003e, in order to avoid a potential security vulnerability\nin the mysql/mysql2 client libraries. You can revert to the old behavior by setting \u003ccode\u003econnectionOptions.extra.stringifyObjects = false\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eWhen using SAP HANA, TypeORM now uses the built-in pool from the \u003ccode\u003e@sap/hana-client\u003c/code\u003e library. The deprecated \u003ccode\u003ehdb-pool\u003c/code\u003e\nis no longer necessary and can be removed. See \u003ca href=\"https://typeorm.io/docs/drivers/sap/#data-source-options\"\u003ehttps://typeorm.io/docs/drivers/sap/#data-source-options\u003c/a\u003e for the new pool options.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd stricter type-checking and improve event loop handling (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11540\"\u003e#11540\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/01dddfef971b25884cd59497d003ea008740b0e9\"\u003e01dddfe\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edo not create junction table metadata when it already exists (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11114\"\u003e#11114\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/3c26cf18a77b5b0cd7c15c811fc3d0a43af32e47\"\u003e3c26cf1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emysql:\u003c/strong\u003e set \u003ccode\u003estringifyObjects\u003c/code\u003e implicitly (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11574\"\u003e#11574\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/d57fe3bd8578b0b8f9847647fd046bccf825a7ef\"\u003ed57fe3b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emysql:\u003c/strong\u003e support Alibaba AnalyticDB returning version() column name in getVersion() (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11555\"\u003e#11555\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/1737e97d1aab59307b230a25713d2afce3c8630a\"\u003e1737e97\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eoracle:\u003c/strong\u003e pass duplicated parameters correctly to the client when executing a query (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11537\"\u003e#11537\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/f2d2236218ea0fd80bc551c325511896538ec518\"\u003ef2d2236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eplatform[web worker]:\u003c/strong\u003e improve globalThis variable retrieval for browser environment (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11495\"\u003e#11495\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/ec26eae8245eeea20d00e37cdb59a97f3d8c49c8\"\u003eec26eae\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epreserve \u003ccode\u003euseIndex\u003c/code\u003e when cloning a QueryExpressionMap (or a QueryBuilder) (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/10679\"\u003e#10679\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/66ee3077847b16f2fc1464373668097fee270e65\"\u003e66ee307\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/10678\"\u003e#10678\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/10678\"\u003e#10678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eregtype is not supported in aurora serverless v2 (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11568\"\u003e#11568\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/6e9f20d4d94eeb6e89e2d49d8fcf7d7ea4f9c243\"\u003e6e9f20d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve array modification bug in QueryRunner drop methods (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11564\"\u003e#11564\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/f351757a15b9d2bd9d4222c69dcfd2316f46b5d1\"\u003ef351757\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11563\"\u003e#11563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esupport for better-sqlite3 v12 (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11557\"\u003e#11557\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/1ea3a5eb0605b6f253510b70df05af0211417706\"\u003e1ea3a5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd Redis 5.x support with backward compatibility with peer dependency to allow (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11585\"\u003e#11585\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/17cf837ba9d6dc1878d1ed4bb6b9342e767fa5ac\"\u003e17cf837\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11528\"\u003e#11528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esap:\u003c/strong\u003e add support for REAL_VECTOR and HALF_VECTOR data types in SAP HANA Cloud (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11526\"\u003e#11526\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/abf8863a5346c465d998852b920c72d51e506985\"\u003eabf8863\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esap:\u003c/strong\u003e use the native driver for connection pooling (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11520\"\u003e#11520\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/aebc7ebc67528ab5f980c7216d3f131d484f4e0d\"\u003eaebc7eb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport virtual columns in entity schema (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11597\"\u003e#11597\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/d1e39509076000485e77bbdf1841c29dc6588933\"\u003ed1e3950\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePerformance Improvements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eavoid unnecessary count on getManyAndCount (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11524\"\u003e#11524\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/5904ac3db21d928e858cd7a6e5f4448fc44256d1\"\u003e5904ac3\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/typeorm/typeorm/compare/0.3.24...0.3.25\"\u003e0.3.25\u003c/a\u003e (2025-06-19)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd collation update detection in PostgresDriver (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11441\"\u003e#11441\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/24c3e38c517bf67366704822668b3e618fa56430\"\u003e24c3e38\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/8647\"\u003e#8647\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/8647\"\u003e#8647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix null pointer exception on date array column comparison (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11532\"\u003e#11532\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/42e7cbe7da4444a3cbe3168f7e5056c964a241e8\"\u003e42e7cbe\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehandle limit(0) and offset(0) correctly in SelectQueryBuilder (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11507\"\u003e#11507\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/413f0a68c891ef463b6940fc40f92efc9a935adc\"\u003e413f0a6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eimprove async calls on disconnect (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11523\"\u003e#11523\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/ead4f98ee4cbf07843002f14771ef19ef44c5af1\"\u003eead4f98\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emultiple relations with same column name(s) generate invalid SELECT statement (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11400\"\u003e#11400\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/63a3b9abc1b4dd336e63ca7c65246891ceebae3d\"\u003e63a3b9a\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/1668\"\u003e#1668\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/9788\"\u003e#9788\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/9814\"\u003e#9814\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/10121\"\u003e#10121\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/10148\"\u003e#10148\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11109\"\u003e#11109\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11132\"\u003e#11132\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11180\"\u003e#11180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epostgres:\u003c/strong\u003e resolve alias or table name in upsert/insert or update conditionally (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11452\"\u003e#11452\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/2bfa300996110d2ed34b8d190e39c0eeeff24fe7\"\u003e2bfa300\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11082\"\u003e#11082\u003c/a\u003e \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11440\"\u003e#11440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etree-entity:\u003c/strong\u003e closure junction table primary key definition should match parent table (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11422\"\u003e#11422\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/ce23d4648ea026085ed0eae52bb9d6f07b2f836a\"\u003ece23d46\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edocs:\u003c/strong\u003e fix up doc search workflow (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11513\"\u003e#11513\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/930eefd758eb6954f29dc8b8c4f189eb02491ffd\"\u003e930eefd\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd upsert support for Oracle, SQLServer and SAP HANA (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/10974\"\u003e#10974\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/a9c16ee66d12d327e2ad9a511c8223bb72d4e693\"\u003ea9c16ee\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003espanner:\u003c/strong\u003e use credentials from connection options (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11492\"\u003e#11492\u003c/a\u003e) (\u003ca href=\"https://github.com/typeorm/typeorm/commit/07d7913be7f3e85ecf7933098384b80cd06070c4\"\u003e07d7913\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11442\"\u003e#11442\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/4d204adf5639f5f16dde33a03d2fe3ac9a610d13\"\u003e\u003ccode\u003e4d204ad\u003c/code\u003e\u003c/a\u003e chore: Release v0.3.26 (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11602\"\u003e#11602\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/d1e39509076000485e77bbdf1841c29dc6588933\"\u003e\u003ccode\u003ed1e3950\u003c/code\u003e\u003c/a\u003e feat: support virtual columns in entity schema (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11597\"\u003e#11597\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/16983132d3a876442ea219f5bca55f974350951a\"\u003e\u003ccode\u003e1698313\u003c/code\u003e\u003c/a\u003e docs: fix \u003ccode\u003ereload\u003c/code\u003e option typo (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11601\"\u003e#11601\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/0b767e833dfa8f63204edae32e1114dfe9f70362\"\u003e\u003ccode\u003e0b767e8\u003c/code\u003e\u003c/a\u003e docs: added \u003ccode\u003e@piying/orm\u003c/code\u003e extension to readme (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11596\"\u003e#11596\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/ec26eae8245eeea20d00e37cdb59a97f3d8c49c8\"\u003e\u003ccode\u003eec26eae\u003c/code\u003e\u003c/a\u003e fix(platform[web worker]): improve globalThis variable retrieval for browser ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/6e9f20d4d94eeb6e89e2d49d8fcf7d7ea4f9c243\"\u003e\u003ccode\u003e6e9f20d\u003c/code\u003e\u003c/a\u003e fix: regtype is not supported in aurora serverless v2 (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11568\"\u003e#11568\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/17cf837ba9d6dc1878d1ed4bb6b9342e767fa5ac\"\u003e\u003ccode\u003e17cf837\u003c/code\u003e\u003c/a\u003e feat(11528): add Redis 5.x support with backward compatibility wite peer depe...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/8097d1ab84f6c387f29084eae241b934949862ad\"\u003e\u003ccode\u003e8097d1a\u003c/code\u003e\u003c/a\u003e docs: fix redirect to mongodb page (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11584\"\u003e#11584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/23fcde24eec67d80cdc7e9e8127ebd79746a663b\"\u003e\u003ccode\u003e23fcde2\u003c/code\u003e\u003c/a\u003e docs: separate driver-specific documentation (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11581\"\u003e#11581\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/typeorm/typeorm/commit/d57fe3bd8578b0b8f9847647fd046bccf825a7ef\"\u003e\u003ccode\u003ed57fe3b\u003c/code\u003e\u003c/a\u003e fix(mysql): set \u003ccode\u003estringifyObjects\u003c/code\u003e implicitly (\u003ca href=\"https://redirect.github.com/typeorm/typeorm/issues/11574\"\u003e#11574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/typeorm/typeorm/compare/0.3.20...0.3.26\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~michaelbromley\"\u003emichaelbromley\u003c/a\u003e, a new releaser for typeorm since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `webpack` from 5.97.1 to 5.104.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/webpack/webpack/releases\"\u003ewebpack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.104.1\u003c/h2\u003e\n\u003ch2\u003e5.104.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2efd21b: Reexports runtime calculation should not accessing \u003cstrong\u003eWEBPACK_IMPORT_KEY\u003c/strong\u003e decl with var.\u003c/li\u003e\n\u003cli\u003ec510070: Fixed a user information bypass vulnerability in the HttpUriPlugin plugin.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.104.0\u003c/h2\u003e\n\u003ch2\u003e5.104.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed3dd841: Use method shorthand to render module content in \u003ccode\u003e__webpack_modules__\u003c/code\u003e object.\u003c/li\u003e\n\u003cli\u003ed3dd841: Enhance \u003ccode\u003eimport.meta.env\u003c/code\u003e to support object access.\u003c/li\u003e\n\u003cli\u003e4baab4e: Optimize dependency sorting in updateParent: sort each module only once by deferring to finishUpdateParent(), and reduce traversal count in sortWithSourceOrder by caching WeakMap values upfront.\u003c/li\u003e\n\u003cli\u003e04cd530: Handle more at-rules for CSS modules.\u003c/li\u003e\n\u003cli\u003ecafae23: Added options to control the renaming of at-rules and various identifiers in CSS modules.\u003c/li\u003e\n\u003cli\u003ed3dd841: Added \u003ccode\u003ebase64url\u003c/code\u003e, \u003ccode\u003ebase62\u003c/code\u003e, \u003ccode\u003ebase58\u003c/code\u003e, \u003ccode\u003ebase52\u003c/code\u003e, \u003ccode\u003ebase49\u003c/code\u003e, \u003ccode\u003ebase36\u003c/code\u003e, \u003ccode\u003ebase32\u003c/code\u003e and \u003ccode\u003ebase25\u003c/code\u003e digests.\u003c/li\u003e\n\u003cli\u003e5983843: Provide a stable runtime function variable \u003ccode\u003e__webpack_global__\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003ed3dd841: Improved \u003ccode\u003elocalIdentName\u003c/code\u003e hashing for CSS.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e22c48fb: Added module existence check for informative error message in development mode.\u003c/li\u003e\n\u003cli\u003e50689e1: Use the fully qualified class name (or export name) for \u003ccode\u003e[fullhash]\u003c/code\u003e placeholder in CSS modules.\u003c/li\u003e\n\u003cli\u003ed3dd841: Support universal lazy compilation.\u003c/li\u003e\n\u003cli\u003ed3dd841: Fixed module library export definitions when multiple runtimes.\u003c/li\u003e\n\u003cli\u003ed3dd841: Fixed CSS nesting and CSS custom properties parsing.\u003c/li\u003e\n\u003cli\u003ed3dd841: Don't write fragment from URL to filename and apply fragment to module URL.\u003c/li\u003e\n\u003cli\u003eaab1da9: Fixed bugs for \u003ccode\u003ecss/global\u003c/code\u003e type.\u003c/li\u003e\n\u003cli\u003ed3dd841: Compatibility \u003ccode\u003eimport.meta.filename\u003c/code\u003e and \u003ccode\u003eimport.meta.dirname\u003c/code\u003e with \u003ccode\u003eeval\u003c/code\u003e devtools.\u003c/li\u003e\n\u003cli\u003ed3dd841: Handle nested \u003ccode\u003e__webpack_require__\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e728ddb7: The speed of identifier parsing has been improved.\u003c/li\u003e\n\u003cli\u003e0f8b31b: Improve types.\u003c/li\u003e\n\u003cli\u003ed3dd841: Don't corrupt \u003ccode\u003edebugId\u003c/code\u003e injection when \u003ccode\u003ehidden-source-map\u003c/code\u003e is used.\u003c/li\u003e\n\u003cli\u003e2179fdb: Re-validate HttpUriPlugin redirects against allowedUris, restrict to http(s) and add a conservative redirect limit to prevent SSRF and untrusted content inclusion. Redirects failing policy are rejected before caching/lockfile writes.\u003c/li\u003e\n\u003cli\u003ed3dd841: Serialize \u003ccode\u003eHookWebpackError\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003ed3dd841: Added ability to use built-in properties in dotenv and define plugin.\u003c/li\u003e\n\u003cli\u003e3c4319f: Optimizing the regular expression character class by specifying ranges for runtime code.\u003c/li\u003e\n\u003cli\u003ed3dd841: Reduce collision for local indent name in CSS.\u003c/li\u003e\n\u003cli\u003ed3dd841: Remove CSS link tags when CSS imports are removed.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.103.0\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eDotenvPlugin\u003c/code\u003e and top level \u003ccode\u003edotenv\u003c/code\u003e option to enable this plugin\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eWebpackManifestPlugin\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdded support the \u003ccode\u003eignoreList\u003c/code\u003e option in devtool plugins\u003c/li\u003e\n\u003cli\u003eAllow to use custom javascript parse function\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/webpack/webpack/blob/main/CHANGELOG.md\"\u003ewebpack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.104.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2efd21b: Reexports runtime calculation should not accessing \u003cstrong\u003eWEBPACK_IMPORT_KEY\u003c/strong\u003e decl with var.\u003c/li\u003e\n\u003cli\u003ec510070: Fixed a user information bypass vulnerability in the HttpUriPlugin plugin.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.104.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed3dd841: Use method shorthand to render module content in \u003ccode\u003e__webpack_modules__\u003c/code\u003e object.\u003c/li\u003e\n\u003cli\u003ed3dd841: Enhance \u003ccode\u003eimport.meta.env\u003c/code\u003e to support object access.\u003c/li\u003e\n\u003cli\u003e4baab4e: Optimize dependency sorting in updateParent: sort each module only once by deferring to finishUpdateParent(), and reduce traversal count in sortWithSourceOrder by caching WeakMap values upfront.\u003c/li\u003e\n\u003cli\u003e04cd530: Handle more at-rules for CSS modules.\u003c/li\u003e\n\u003cli\u003ecafae23: Added options to control the renaming of at-rules and various identifiers in CSS modules.\u003c/li\u003e\n\u003cli\u003ed3dd841: Added \u003ccode\u003ebase64url\u003c/code\u003e, \u003ccode\u003ebase62\u003c/code\u003e, \u003ccode\u003ebase58\u003c/code\u003e, \u003ccode\u003ebase52\u003c/code\u003e, \u003ccode\u003ebase49\u003c/code\u003e, \u003ccode\u003ebase36\u003c/code\u003e, \u003ccode\u003ebase32\u003c/code\u003e and \u003ccode\u003ebase25\u003c/code\u003e digests.\u003c/li\u003e\n\u003cli\u003e5983843: Provide a stable runtime function variable \u003ccode\u003e__webpack_global__\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003ed3dd841: Improved \u003ccode\u003elocalIdentName\u003c/code\u003e hashing for CSS.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e22c48fb: Added module existence check for informative error message in development mode.\u003c/li\u003e\n\u003cli\u003e50689e1: Use the fully qualified class name (or export name) for \u003ccode\u003e[fullhash]\u003c/code\u003e placeholder in CSS modules.\u003c/li\u003e\n\u003cli\u003ed3dd841: Support universal lazy compilation.\u003c/li\u003e\n\u003cli\u003ed3dd841: Fixed module library export definitions when multiple runtimes.\u003c/li\u003e\n\u003cli\u003ed3dd841: Fixed CSS nesting and CSS custom properties parsing.\u003c/li\u003e\n\u003cli\u003ed3dd841: Don't write fragment from URL to filename and apply fragment to module URL.\u003c/li\u003e\n\u003cli\u003eaab1da9: Fixed bugs for \u003ccode\u003ecss/global\u003c/code\u003e type.\u003c/li\u003e\n\u003cli\u003ed3dd841: Compatibility \u003ccode\u003eimport.meta.filename\u003c/code\u003e and \u003ccode\u003eimport.meta.dirname\u003c/code\u003e with \u003ccode\u003eeval\u003c/code\u003e devtools.\u003c/li\u003e\n\u003cli\u003ed3dd841: Handle nested \u003ccode\u003e__webpack_require__\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e728ddb7: The speed of identifier parsing has been improved.\u003c/li\u003e\n\u003cli\u003e0f8b31b: Improve types.\u003c/li\u003e\n\u003cli\u003ed3dd841: Don't corrupt \u003ccode\u003edebugId\u003c/code\u003e injection when \u003ccode\u003ehidden-source-map\u003c/code\u003e is used.\u003c/li\u003e\n\u003cli\u003e2179fdb: Re-validate HttpUriPlugin redirects against allowedUris, restrict to http(s) and add a conservative redirect limit to prevent SSRF and untrusted content inclusion. Redirects failing policy are rejected before caching/lockfile writes.\u003c/li\u003e\n\u003cli\u003ed3dd841: Serialize \u003ccode\u003eHookWebpackError\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003ed3dd841: Added ability to use built-in properties in dotenv and define plugin.\u003c/li\u003e\n\u003cli\u003e3c4319f: Optimizing the regular expression character class by specifying ranges for runtime code.\u003c/li\u003e\n\u003c...\n\n_Description has been truncated_","html_url":"https://github.com/ssushant0011/omnivore/pull/10","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ssushant0011%2Fomnivore/issues/10","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-02-22T08:56:06.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"3973965473","node_id":"PR_kwDOOrzwks7Fb2Cz","number":5,"state":"closed","title":"chore(deps): Bump the npm_and_yarn group across 9 directories with 27 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-25T01:08:00.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-22T08:56:06.000Z","updated_at":"2026-02-25T01:08:01.000Z","time_to_close":231114,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","group_name":"npm_and_yarn","update_count":27,"packages":[{"name":"react-router","old_version":"6.22.3","new_version":"6.30.2","repository_url":"https://github.com/remix-run/react-router"},{"name":"@backstage/backend-defaults","old_version":"0.2.18","new_version":"0.15.2","repository_url":"https://github.com/backstage/backstage"},{"name":"@backstage/plugin-scaffolder-backend","old_version":"1.27.1","new_version":"2.1.1","repository_url":"https://github.com/backstage/backstage"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"glob","old_version":"11.0.1","new_version":"12.0.0","repository_url":"https://github.com/isaacs/node-glob"},{"name":"@langchain/core","old_version":"0.3.22","new_version":"0.3.80","repository_url":"https://github.com/langchain-ai/langchainjs"},{"name":"@babel/runtime-corejs3","old_version":"7.24.0","new_version":"7.29.0","repository_url":"https://github.com/babel/babel"},{"name":"@backstage/cli-common","old_version":"0.1.14","new_version":"0.1.18","repository_url":"https://github.com/backstage/backstage"},{"name":"@backstage/plugin-techdocs-node","old_version":"1.12.14","new_version":"1.14.2","repository_url":"https://github.com/backstage/backstage"},{"name":"@smithy/config-resolver","old_version":"2.1.5","new_version":"2.2.0","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"ajv","old_version":"6.12.6","new_version":"6.14.0","repository_url":"https://github.com/ajv-validator/ajv"},{"name":"axios","old_version":"1.7.5","new_version":"1.13.5","repository_url":"https://github.com/axios/axios"},{"name":"cipher-base","old_version":"1.0.4","new_version":"1.0.7","repository_url":"https://github.com/crypto-browserify/cipher-base"},{"name":"diff","old_version":"4.0.2","new_version":"4.0.4","repository_url":"https://github.com/kpdecker/jsdiff"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"http-proxy-middleware","old_version":"2.0.7","new_version":"2.0.9","repository_url":"https://github.com/chimurai/http-proxy-middleware"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"jws","old_version":"3.2.2","new_version":"3.2.3","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"multer","old_version":"1.4.5-lts.1","new_version":"1.4.5-lts.2","repository_url":"https://github.com/expressjs/multer"},{"name":"node-forge","old_version":"1.3.1","new_version":"1.3.3","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"pbkdf2","old_version":"3.1.2","new_version":"3.1.5","repository_url":"https://github.com/browserify/pbkdf2"},{"name":"qs","old_version":"6.5.3","new_version":"6.5.5","repository_url":"https://github.com/ljharb/qs"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"webpack-dev-server","old_version":"5.0.4","new_version":"5.2.3","repository_url":"https://github.com/webpack/webpack-dev-server"},{"name":"webpack","old_version":"5.96.1","new_version":"5.105.2","repository_url":"https://github.com/webpack/webpack"},{"name":"xml-crypto","old_version":"3.2.0","new_version":"3.2.1","repository_url":"https://github.com/node-saml/xml-crypto"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [react-router](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router) | `6.22.3` | `6.30.2` |\n| [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults) | `0.2.18` | `0.15.2` |\n| [@backstage/plugin-scaffolder-backend](https://github.com/backstage/backstage/tree/HEAD/plugins/scaffolder-backend) | `1.27.1` | `2.1.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [glob](https://github.com/isaacs/node-glob) | `11.0.1` | `12.0.0` |\n| [@langchain/core](https://github.com/langchain-ai/langchainjs) | `0.3.22` | `0.3.80` |\n| [@babel/runtime-corejs3](https://github.com/babel/babel/tree/HEAD/packages/babel-runtime-corejs3) | `7.24.0` | `7.29.0` |\n| [@backstage/cli-common](https://github.com/backstage/backstage/tree/HEAD/packages/cli-common) | `0.1.14` | `0.1.18` |\n| [@backstage/plugin-techdocs-node](https://github.com/backstage/backstage/tree/HEAD/plugins/techdocs-node) | `1.12.14` | `1.14.2` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `2.1.5` | `2.2.0` |\n| [ajv](https://github.com/ajv-validator/ajv) | `6.12.6` | `6.14.0` |\n| [axios](https://github.com/axios/axios) | `1.7.5` | `1.13.5` |\n| [cipher-base](https://github.com/crypto-browserify/cipher-base) | `1.0.4` | `1.0.7` |\n| [diff](https://github.com/kpdecker/jsdiff) | `4.0.2` | `4.0.4` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) | `2.0.7` | `2.0.9` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [multer](https://github.com/expressjs/multer) | `1.4.5-lts.1` | `1.4.5-lts.2` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [pbkdf2](https://github.com/browserify/pbkdf2) | `3.1.2` | `3.1.5` |\n| [qs](https://github.com/ljharb/qs) | `6.5.3` | `6.5.5` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [webpack-dev-server](https://github.com/webpack/webpack-dev-server) | `5.0.4` | `5.2.3` |\n| [webpack](https://github.com/webpack/webpack) | `5.96.1` | `5.105.2` |\n| [xml-crypto](https://github.com/node-saml/xml-crypto) | `3.2.0` | `3.2.1` |\n\nBumps the npm_and_yarn group with 4 updates in the /examples/cdk directory: [ajv](https://github.com/ajv-validator/ajv), [diff](https://github.com/kpdecker/jsdiff), [js-yaml](https://github.com/nodeca/js-yaml) and [minimatch](https://github.com/isaacs/minimatch).\nBumps the npm_and_yarn group with 2 updates in the /packages/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults) and [@backstage/plugin-scaffolder-backend](https://github.com/backstage/backstage/tree/HEAD/plugins/scaffolder-backend).\nBumps the npm_and_yarn group with 1 update in the /plugins/codebuild/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults).\nBumps the npm_and_yarn group with 1 update in the /plugins/codepipeline/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults).\nBumps the npm_and_yarn group with 1 update in the /plugins/cost-insights/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults).\nBumps the npm_and_yarn group with 1 update in the /plugins/ecr/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults).\nBumps the npm_and_yarn group with 1 update in the /plugins/ecs/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults).\nBumps the npm_and_yarn group with 1 update in the /plugins/genai/backend directory: [@backstage/backend-defaults](https://github.com/backstage/backstage/tree/HEAD/packages/backend-defaults).\n\nUpdates `react-router` from 6.22.3 to 6.30.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/remix-run/react-router/releases\"\u003ereact-router's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.30.2\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/v6/CHANGELOG.md#v6302\"\u003ehttps://github.com/remix-run/react-router/blob/v6/CHANGELOG.md#v6302\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.30.1\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6301\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6301\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.30.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6300\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6300\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.29.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6290\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6290\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.28.2\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6282\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6282\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.28.1\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6281\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6281\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.28.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6280\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6280\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.27.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6270\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6270\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.26.2\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6262\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6262\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.26.1\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6261\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6261\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.26.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6260\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6260\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.25.1\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6251\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6251\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.25.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6250\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6250\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.24.1\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6241\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6241\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.24.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6240\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6240\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.23.1\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6231\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6231\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.23.0\u003c/h2\u003e\n\u003cp\u003eSee the changelog for release notes: \u003ca href=\"https://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6230\"\u003ehttps://github.com/remix-run/react-router/blob/main/CHANGELOG.md#v6230\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/remix-run/react-router/blob/react-router@6.30.2/packages/react-router/CHANGELOG.md\"\u003ereact-router's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e6.30.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@remix-run/router@1.23.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.30.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePartially revert optimization added in \u003ccode\u003e6.29.0\u003c/code\u003e to reduce calls to \u003ccode\u003ematchRoutes\u003c/code\u003e because it surfaced other issues (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/13623\"\u003e#13623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eStop logging invalid warning when \u003ccode\u003ev7_relativeSplatPath\u003c/code\u003e is set to false (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/13502\"\u003e#13502\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.30.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003efetcherKey\u003c/code\u003e as a parameter to \u003ccode\u003epatchRoutesOnNavigation\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/13109\"\u003e#13109\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@remix-run/router@1.23.0\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.29.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eProvide the request \u003ccode\u003esignal\u003c/code\u003e as a parameter to \u003ccode\u003epatchRoutesOnNavigation\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/12900\"\u003e#12900\u003c/a\u003e)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThis can be used to abort any manifest fetches if the in-flight navigation/fetcher is aborted\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not log v7 deprecation warnings in production builds (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/12794\"\u003e#12794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit matchRoutes optimization to client side routers (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/12881\"\u003e#12881\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eOptimize route matching by skipping redundant \u003ccode\u003ematchRoutes\u003c/code\u003e calls when possible (\u003ca href=\"https://redirect.github.com/remix-run/react-router/pull/12169\"\u003e#12169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdated dependencies:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@remix-run/router@1.22.0\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.28.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@remix-run/router@1.21.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e6.28.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/26b5d4581fb2829dc7eaeaad413de4735173a6eb\"\u003e\u003ccode\u003e26b5d45\u003c/code\u003e\u003c/a\u003e chore: Update version for release (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14541\"\u003e#14541\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/919f8a86b95f0c8956e3820743503d5609f572cd\"\u003e\u003ccode\u003e919f8a8\u003c/code\u003e\u003c/a\u003e chore: Update version for release (pre-v6) (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14540\"\u003e#14540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/69bf7056f1540918a0324e0af215978cdaf5d486\"\u003e\u003ccode\u003e69bf705\u003c/code\u003e\u003c/a\u003e Normalize double slashes in resolvePath (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/14537\"\u003e#14537\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/3f2400e9a7e255953afef3d29126db2efb6c08ab\"\u003e\u003ccode\u003e3f2400e\u003c/code\u003e\u003c/a\u003e chore: Update version for release (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/13647\"\u003e#13647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/25a264d87bce0bd5f0170e99a3dcad3a61a5f080\"\u003e\u003ccode\u003e25a264d\u003c/code\u003e\u003c/a\u003e chore: Update version for release (pre-v6) (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/13638\"\u003e#13638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/b5705a0b5e905212487336d7548d86418b299f16\"\u003e\u003ccode\u003eb5705a0\u003c/code\u003e\u003c/a\u003e Remove matchRoutes optimization from render pass (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/13623\"\u003e#13623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/785f6f6d7796d36a1c60d1c718a69e6cb1f8d415\"\u003e\u003ccode\u003e785f6f6\u003c/code\u003e\u003c/a\u003e Prevent invalid warning for v7_relativeSplatPath (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/13502\"\u003e#13502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/e4ba5224c911e070b1eabd12cff2aa581270dfb3\"\u003e\u003ccode\u003ee4ba522\u003c/code\u003e\u003c/a\u003e chore: Update version for release (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/13128\"\u003e#13128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/f0bc784ce8951cc5ed67bf6d48d9c132b9bdc621\"\u003e\u003ccode\u003ef0bc784\u003c/code\u003e\u003c/a\u003e chore: Update version for release (pre-v6) (\u003ca href=\"https://github.com/remix-run/react-router/tree/HEAD/packages/react-router/issues/13111\"\u003e#13111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/remix-run/react-router/commit/d9ed8241d677de006a9bfe808d32fe4582184dad\"\u003e\u003ccode\u003ed9ed824\u003c/code\u003e\u003c/a\u003e Fix up changelogs\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/remix-run/react-router/commits/react-router@6.30.2/packages/react-router\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for react-router since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@backstage/backend-defaults` from 0.2.18 to 0.15.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/backstage/backstage/blob/master/packages/backend-defaults/CHANGELOG.md\"\u003e\u003ccode\u003e@​backstage/backend-defaults\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.15.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003cli\u003e44f5d04: Minor internal restructure of the postgres config loading code\u003c/li\u003e\n\u003cli\u003e4fc7bf0: Bump to tar v7\u003c/li\u003e\n\u003cli\u003e5dd683f: \u003ccode\u003ecreateRateLimitMiddleware\u003c/code\u003e is now exported from \u003ccode\u003e@backstage/backend-defaults/httpRouter\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e8dd518a: Support \u003ccode\u003econnection.type: azure\u003c/code\u003e in database client to use Microsoft Entra authentication with Azure database for PostgreSQL\u003c/li\u003e\n\u003cli\u003e69d880e: Bump to latest zod to ensure it has the latest features\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-app-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.20.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration-aws-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.20\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-dev-utils\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.7\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/config-loader\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.10.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/cli-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-auth-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.6.13\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-permission-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.10.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-events-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.4.19\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.15.2-next.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8dd518a: Support \u003ccode\u003econnection.type: azure\u003c/code\u003e in database client to use Microsoft Entra authentication with Azure database for PostgreSQL\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.20.0-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/cli-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.18-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0-next.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.15.1-next.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003cli\u003e44f5d04: Minor internal restructure of the postgres config loading code\u003c/li\u003e\n\u003cli\u003e4fc7bf0: Bump to tar v7\u003c/li\u003e\n\u003cli\u003e69d880e: Bump to latest zod to ensure it has the latest features\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration-aws-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.20-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-dev-utils\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.7-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/config-loader\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.10.8-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.19.3-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/cli-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.17-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-auth-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.6.12-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-app-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.5.0-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-permission-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.10.9-next.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/backstage/backstage/commits/HEAD/packages/backend-defaults\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@backstage/plugin-scaffolder-backend` from 1.27.1 to 2.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/backstage/backstage/releases\"\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.48.1\u003c/h2\u003e\n\u003cp\u003eThis patch release fixes the following issues:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd missing sharing extensions sidebar item in frontend system architecture docs\u003c/li\u003e\n\u003cli\u003eFix type compatibility for older plugins in FrontendFeature type\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.48.0\u003c/h2\u003e\n\u003cp\u003eThese are the release notes for the v1.48.0 release of \u003ca href=\"https://backstage.io/\"\u003eBackstage\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eA huge thanks to the whole team of maintainers and contributors as well as the amazing Backstage Community for the hard work in getting this release developed and done.\u003c/p\u003e\n\u003ch2\u003eHighlights\u003c/h2\u003e\n\u003ch3\u003e\u003cstrong\u003eBREAKING ALPHA\u003c/strong\u003e: Catalog extension points graduated\u003c/h3\u003e\n\u003cp\u003eIf you are providing custom processors and entity providers into the catalog, you will now note that several (but not quite all!) of those extension points have graduated out of alpha and into the regular stable exports.\u003c/p\u003e\n\u003cp\u003eThus, if you are importing for example \u003ccode\u003ecatalogProcessingExtensionPoint\u003c/code\u003e from \u003ccode\u003e@backstage/plugin-catalog-node/alpha\u003c/code\u003e, you now want to remove that \u003ccode\u003e/alpha\u003c/code\u003e suffix.\u003c/p\u003e\n\u003ch3\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: API restrictions in New Frontend System\u003c/h3\u003e\n\u003cp\u003eIn the 1.47 release a new behavior was introduced to the New Frontend System that limits the ability for plugins and modules to provide APIs to plugins other than themselves. For example, the \u003ccode\u003escaffolder\u003c/code\u003e plugin could no longer install a custom \u003ccode\u003eCatalogApi\u003c/code\u003e implementation. This also applies to modules, where you now need to use a module explicitly targeting the \u003ccode\u003e'app'\u003c/code\u003e plugin to for example override the \u003ccode\u003eErrorApi\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eIn 1.47 this new behavior simply triggered a warning, but in this release the API overrides are instead rejected with an error.\u003c/p\u003e\n\u003ch3\u003eExperimental Client ID Metadata Documents\u003c/h3\u003e\n\u003cp\u003eWith the \u003ca href=\"https://modelcontextprotocol.io/specification/2025-11-25/basic/authorization\"\u003elatest MCP specification\u003c/a\u003e published in November, it outlined a new authorization method that’s going to take over from Dynamic Client Registration called \u003ca href=\"https://modelcontextprotocol.io/specification/2025-11-25/basic/authorization#client-id-metadata-documents\"\u003eClient ID Metadata Documents\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eThis can be enabled in the \u003ccode\u003eauth-backend\u003c/code\u003e plugin by using the \u003ccode\u003eauth.experimentalClientIdMetadataDocuments.enabled\u003c/code\u003e flag in config.\u003c/p\u003e\n\u003cp\u003eBe sure to head over to the \u003ca href=\"https://github.com/backstage/backstage/blob/master/plugins/auth-backend/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for additional configuration and security considerations.\u003c/p\u003e\n\u003ch3\u003eExperimental Refresh Token Support\u003c/h3\u003e\n\u003cp\u003eClients can now request the \u003ccode\u003eoffline_access\u003c/code\u003e scope to receive refresh tokens when \u003ccode\u003eauth.experimentalRefreshToken.enabled\u003c/code\u003e is set, allowing new access tokens without re-authentication. This can be highly useful when using \u003ccode\u003eexperimentalDynamicClientRegistration\u003c/code\u003e so that the tokens don’t expire every 1h by default, which then triggers another auth session approval request.\u003c/p\u003e\n\u003cp\u003eThis also means that \u003ccode\u003eauth.experimentalDynamicClientRegistration.tokenExpiration\u003c/code\u003e has been removed in favor of using this method as a \u003cstrong\u003eBREAKING EXPERIMENTAL\u003c/strong\u003e change.\u003c/p\u003e\n\u003ch3\u003eNew Frontend System: Testing utilities\u003c/h3\u003e\n\u003cp\u003eThe testing utilities for the new frontend system have gotten an overhaul in this release, with all new features documented in the \u003ca href=\"https://backstage.io/docs/frontend-system/building-plugins/testing\"\u003eplugin testing section\u003c/a\u003e. Some highlights include that \u003ccode\u003emountedRoutes\u003c/code\u003e and \u003ccode\u003eapis\u003c/code\u003e options are available for all harnesses where applicable. The selection of \u003ccode\u003emockApis\u003c/code\u003e has been increased to support more of the core APIs and have both Jest and minimal implementation mocks. The \u003ccode\u003emockApis\u003c/code\u003e now also produces values that can be passed directly to the various testing \u003ccode\u003eapis\u003c/code\u003e options, without the need to wrap \u003ccode\u003e[ref, impl]\u003c/code\u003e tuples.\u003c/p\u003e\n\u003ch3\u003eUtilities for creating frontend and backend mocks\u003c/h3\u003e\n\u003cp\u003eBoth \u003ccode\u003e@backstage/frontend-test-utils\u003c/code\u003e and \u003ccode\u003e@backstage/backend-test-utils\u003c/code\u003e now export utilities for creating service and API mocks, \u003ccode\u003ecreateServiceMock\u003c/code\u003e and \u003ccode\u003ecreateApiMock\u003c/code\u003e. These utilities create the same kind of mock utilities as the ones provided by \u003ccode\u003emockServices\u003c/code\u003e and \u003ccode\u003emockApis\u003c/code\u003e, and are encouraged to be exported via the \u003ccode\u003e/testUtils\u003c/code\u003e sub-path export from packages, similar to how this pattern is used in \u003ccode\u003e@backstage/plugin-catalog-react\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eNew Frontend System: Plugin titles \u0026amp; icons\u003c/h3\u003e\n\u003cp\u003ePlugins now have optional titles and icons in the new frontend system. This helps implement app-wide features and navigation patterns that enumerate plugins or in other ways traverse the extension tree in the app.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/backstage/backstage/blob/master/plugins/scaffolder-backend/CHANGELOG.md\"\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend\u003c/code\u003e\u003c/h1\u003e\n\u003ch2\u003e3.1.3\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003cli\u003e4fc7bf0: Removed unused dependency\u003c/li\u003e\n\u003cli\u003e0ce78b0: Support \u003ccode\u003eif\u003c/code\u003e conditions inside \u003ccode\u003eeach\u003c/code\u003e loops for scaffolder steps\u003c/li\u003e\n\u003cli\u003e5e3ef57: Added \u003ccode\u003epeerModules\u003c/code\u003e metadata declaring recommended modules for cross-plugin integrations.\u003c/li\u003e\n\u003cli\u003e8148621: Moved \u003ccode\u003e@backstage/backend-defaults\u003c/code\u003e from \u003ccode\u003edependencies\u003c/code\u003e to \u003ccode\u003edevDependencies\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e1e669cc: Migrate audit events reference docs to \u003ca href=\"http://backstage.io/docs\"\u003ehttp://backstage.io/docs\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003e69d880e: Bump to latest zod to ensure it has the latest features\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-gitlab\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.11.3\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.20.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-catalog-backend-module-scaffolder-entity-model\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.17\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-catalog-node\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.0.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-bitbucket-cloud\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.3.3\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-bitbucket\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.3.19\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-gerrit\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-github\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.9.6\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-gitea\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-openapi-utils\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.6.6\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-bitbucket-cloud-common\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.3.7\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.12.5\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-auth-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.6.13\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-permission-common\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.9.6\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-permission-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.10.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-events-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.4.19\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-azure\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-bitbucket-server\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.18\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-common\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.6\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.1.3-next.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8148621: Moved \u003ccode\u003e@backstage/backend-defaults\u003c/code\u003e from \u003ccode\u003edependencies\u003c/code\u003e to \u003ccode\u003edevDependencies\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-gitlab\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.11.3-next.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.20.0-next.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-catalog-node\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.0.0-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-auth-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.6.13-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-catalog-backend-module-scaffolder-entity-model\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.2.17-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-events-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.4.19-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-permission-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.10.10-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-scaffolder-backend-module-bitbucket\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.3.19-next.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/backstage/backstage/commits/HEAD/plugins/scaffolder-backend\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `glob` from 11.0.1 to 12.0.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/isaacs/node-glob/blob/main/changelog.md\"\u003eglob's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003echangeglob\u003c/h1\u003e\n\u003ch2\u003e13\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMove the CLI program out to a separate package, \u003ccode\u003eglob-bin\u003c/code\u003e.\nInstall that if you'd like to continue using glob from the\ncommand line.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the unsafe \u003ccode\u003e--shell\u003c/code\u003e option. The \u003ccode\u003e--shell\u003c/code\u003e option is now\nONLY supported on known shells where the behavior can be\nimplemented safely.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.1\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2\"\u003eGHSA-5j98-mcp5-4vw2\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--shell\u003c/code\u003e option for the command line, with a warning\nthat this is unsafe. (It will be removed in v12.)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003e--cmd-arg\u003c/code\u003e/\u003ccode\u003e-g\u003c/code\u003e as a way to \u003cem\u003esafely\u003c/em\u003e add positional\narguments to the command provided to the CLI tool.\u003c/li\u003e\n\u003cli\u003eDetect commands with space or quote characters on known shells,\nand pass positional arguments to them safely, avoiding\n\u003ccode\u003eshell:true\u003c/code\u003e execution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for node before v20\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eincludeChildMatches: false\u003c/code\u003e option\u003c/li\u003e\n\u003cli\u003eExport the \u003ccode\u003eIgnore\u003c/code\u003e class\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003e--default -p\u003c/code\u003e flag to provide a default pattern\u003c/li\u003e\n\u003cli\u003eexclude symbolic links to directories when \u003ccode\u003efollow\u003c/code\u003e and \u003ccode\u003enodir\u003c/code\u003e\nare both set\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd glob cli\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReturn \u003ccode\u003e'.'\u003c/code\u003e instead of the empty string \u003ccode\u003e''\u003c/code\u003e when the current\nworking directory is returned as a match.\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eposix: true\u003c/code\u003e option to return \u003ccode\u003e/\u003c/code\u003e delimited paths, even on\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2b03ccaf9fc397b6054d639cd5fbe97104d36221\"\u003e\u003ccode\u003e2b03cca\u003c/code\u003e\u003c/a\u003e 12.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/d56203dc19a4af5c8f8177a3b67e63a14a246458\"\u003e\u003ccode\u003ed56203d\u003c/code\u003e\u003c/a\u003e prettier config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bb521e5d188a8cbbe86d5cef3bf57a49fdee7c59\"\u003e\u003ccode\u003ebb521e5\u003c/code\u003e\u003c/a\u003e Remove --shell option where unsafe to use\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/2551fb51440d402fa2120457bf460e546ee9964d\"\u003e\u003ccode\u003e2551fb5\u003c/code\u003e\u003c/a\u003e 11.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146\"\u003e\u003ccode\u003e47473c0\u003c/code\u003e\u003c/a\u003e bin: Do not expose filenames to shell expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/bc33fe1c6a47abd497703d79ad96036e7891ff62\"\u003e\u003ccode\u003ebc33fe1\u003c/code\u003e\u003c/a\u003e skip tilde test on systems that lack tilde expansion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/59bf9ca211bda5636c4fe9e32d41530c90a4f30d\"\u003e\u003ccode\u003e59bf9ca\u003c/code\u003e\u003c/a\u003e fix notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/dde4fa66c87e24b37bb5be28ed10c6e12019edac\"\u003e\u003ccode\u003edde4fa6\u003c/code\u003e\u003c/a\u003e docs(README): add #anchor and improve \u003ccode\u003enote\u003c/code\u003es\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/0559b0ed13c0f8147cd2ac9d48bb49684caaf20e\"\u003e\u003ccode\u003e0559b0e\u003c/code\u003e\u003c/a\u003e docs: add better links to path-scurry docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isaacs/node-glob/commit/c9773c249b4b9ed6b2447222c226f9d20c6ce916\"\u003e\u003ccode\u003ec9773c2\u003c/code\u003e\u003c/a\u003e fix: correct typos in \u003ccode\u003eREADME.md\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/isaacs/node-glob/compare/v11.0.1...v12.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~isaacs\"\u003eisaacs\u003c/a\u003e, a new releaser for glob since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version adds \u003ccode\u003eprepare\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@langchain/core` from 0.3.22 to 0.3.80\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/langchain-ai/langchainjs/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~hntrl\"\u003ehntrl\u003c/a\u003e, a new releaser for \u003ccode\u003e@​langchain/core\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/runtime-corejs3` from 7.24.0 to 7.29.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/runtime-corejs3\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.0 (2026-01-31)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e for your first PR!\u003c/p\u003e\n\u003ch4\u003e:rocket: New Feature\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17750\"\u003e#17750\u003c/a\u003e [7.x backport] Add attributes import declaration builder (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17663\"\u003e#17663\u003c/a\u003e [7.x backport] feat(standalone): export async transform (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17725\"\u003e#17725\u003c/a\u003e [7.x backport] feat: read standalone targets from data-targets (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17765\"\u003e#17765\u003c/a\u003e fix(parser): correctly parse type assertions in \u003ccode\u003eextends\u003c/code\u003e clause (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17723\"\u003e#17723\u003c/a\u003e [7.x backport] fix(parser): improve super type argument parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17708\"\u003e#17708\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentPath is given (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-block-scoping\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17737\"\u003e#17737\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates shadowing variable (\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17642\"\u003e#17642\u003c/a\u003e [Babel 7] Improve generator performance (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 6\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDavid (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aa8394e454337d118ac3d40bfa3ee1a3cb3f3ed2\"\u003e\u003ccode\u003eaa8394e\u003c/code\u003e\u003c/a\u003e v7.29.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/0053db620c05acf0036f593b5aaf4e372daa79d0\"\u003e\u003ccode\u003e0053db6\u003c/code\u003e\u003c/a\u003e Update polyfill packages (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime-corejs3/issues/17727\"\u003e#17727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/68e157771568abc3ba8b2775caf7618cd9692ae5\"\u003e\u003ccode\u003e68e1577\u003c/code\u003e\u003c/a\u003e [Babel 7] Improve generator performance (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime-corejs3/issues/17642\"\u003e#17642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/35055e392079a65830b7bf5b1d1c1fc4de90a78f\"\u003e\u003ccode\u003e35055e3\u003c/code\u003e\u003c/a\u003e v7.28.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/18d88b83c67c8dbbe63e4ac423e6006c4c01b85c\"\u003e\u003ccode\u003e18d88b8\u003c/code\u003e\u003c/a\u003e Improve \u003ccode\u003e@​babel/core\u003c/code\u003e typings (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime-corejs3/issues/17471\"\u003e#17471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ef155f5ca83c73dbc1ea8d95216830b7dc3b0ac2\"\u003e\u003ccode\u003eef155f5\u003c/code\u003e\u003c/a\u003e v7.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/cac0ff4c3426eed30b4d27e7971b348da7c9f1e6\"\u003e\u003ccode\u003ecac0ff4\u003c/code\u003e\u003c/a\u003e v7.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/f743094585b39bd9f7a9e3a3561215b2103e2474\"\u003e\u003ccode\u003ef743094\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003eregeneratorDefine\u003c/code\u003e compatibility with es5 strict mode (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-runtime-corejs3/issues/17441\"\u003e#17441\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/ccc5fae96f5281ae1ee49fac74c7c275b9111ead\"\u003e\u003ccode\u003eccc5fae\u003c/code\u003e\u003c/a\u003e v7.28.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.0/packages/babel-runtime-corejs3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/runtime-corejs3\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@backstage/cli-common` from 0.1.14 to 0.1.18\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/backstage/backstage/blob/master/packages/cli-common/CHANGELOG.md\"\u003e\u003ccode\u003e@​backstage/cli-common\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e0.1.18\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.18-next.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/errors\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.2.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.17\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eae4dd5d: Move some of the symlink resolution to \u003ccode\u003eisChildPath\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.16\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e5cfb2a4: Added new \u003ccode\u003erun\u003c/code\u003e, \u003ccode\u003erunOutput\u003c/code\u003e, and \u003ccode\u003erunCheck\u003c/code\u003e utilities to help run child processes in a safe and portable way.\u003c/li\u003e\n\u003cli\u003ec8c2329: Add proxy configuration from env-vars to create-app tasks\u003c/li\u003e\n\u003cli\u003e2bae83a: Bumped dev dependencies \u003ccode\u003e@types/node\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.16-next.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2bae83a: Bumped dev dependencies \u003ccode\u003e@types/node\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/errors\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.2.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.16-next.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e5cfb2a4: Added new \u003ccode\u003erun\u003c/code\u003e, \u003ccode\u003erunOutput\u003c/code\u003e, and \u003ccode\u003erunCheck\u003c/code\u003e utilities to help run child processes in a safe and portable way.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.16-next.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ec8c2329: Add proxy configuration from env-vars to create-app tasks\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.1.15\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/backstage/backstage/commits/HEAD/packages/cli-common\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@backstage/plugin-techdocs-node` from 1.12.14 to 1.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/backstage/backstage/blob/master/plugins/techdocs-node/CHANGELOG.md\"\u003e\u003ccode\u003e@​backstage/plugin-techdocs-node\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.14.2\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003cli\u003e3c455d4: Some security fixes\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.20.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration-aws-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.20\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-search-common\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.2.22\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.14.2-next.1\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e3c455d4: Some security fixes\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.20.0-next.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0-next.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.14.1-next.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7455dae: Use node prefix on native imports\u003c/li\u003e\n\u003cli\u003eUpdated dependencies\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration-aws-node\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.20-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/backend-plugin-api\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.0-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-search-common\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.2.22-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/integration\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.19.3-next.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/catalog-model\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.7.6\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/config\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.3.6\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/errors\u003c/code\u003e\u003ca href=\"https://github.com/1\"\u003e\u003ccode\u003e@​1\u003c/code\u003e\u003c/a\u003e.2.7\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​backstage/plugin-techdocs-common\u003c/code\u003e\u003ca href=\"https://github.com/0\"\u003e\u003ccode\u003e@​0\u003c/code\u003e\u003c/a\u003e.1.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.14.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e63c459c: \u003cstrong\u003eBREAKING:\u003c/strong\u003e It's now possible to use the credentials from the \u003ccode\u003eintegrations.awsS3\u003c/code\u003e config to authenticate with AWS S3. The new priority is:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003e\u003ccode\u003eaws.accounts\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003etechdocs.publisher.awsS3.credentials\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eintegrations.awsS3\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eDefault credential chain\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003eIn case of multiple \u003ccode\u003eintegrations.awsS3\u003c/code\u003e are present, the target integration is determined by the \u003ccode\u003eaccessKeyId\u003c/code\u003e in \u003ccode\u003etechdocs.publisher.awsS3.credentials\u003c/code\u003e if provided. Otherwise, the default credential chain is used.\u003c/p\u003e\n\u003cp\u003eThis means that depending on your setup, this feature may break your existing setup.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/backstage/backstage/commits/v1.14.2/plugins/techdocs-node\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 2.1.5 to 2.2.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.2.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e38f9a61f: Update package dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [38f9a61f]\u003c/li\u003e\n\u003cli\u003eUpdated dependencies [661f1d60]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.3.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.3.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.2.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/2\"\u003e\u003ccode\u003e@​2\u003c/code\u003e\u003c/a\u003e.12.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/a53fe369122851e1566f28f8cf2d60a3727fbf20\"\u003e\u003ccode\u003ea53fe36\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/38f9a61f2a3c5395a9d7b4e8ee77dd3ea4825290\"\u003e\u003ccode\u003e38f9a61\u003c/code\u003e\u003c/a\u003e chore: bulk upgrade npm dependencies (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1202\"\u003e#1202\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@2.2.0/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `ajv` from 6.12.6 to 6.14.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/e3af0a723b4b7ad86eff43be355c706d31e0e915\"\u003e\u003ccode\u003ee3af0a7\u003c/code\u003e\u003c/a\u003e 6.14.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/b552ed66191eb338498df3196065c777e3bb71f2\"\u003e\u003ccode\u003eb552ed6\u003c/code\u003e\u003c/a\u003e add regExp option to address $data exploit via a regular expression (CVE-2025...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/72f228665859eed5e2be3a66f8c4a7aff6b34dcf\"\u003e\u003ccode\u003e72f2286\u003c/code\u003e\u003c/a\u003e docs: update v7 info\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/231e52b3bca62559202b95e5fb5cee02145b226a\"\u003e\u003ccode\u003e231e52b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ajv-validator/ajv/issues/1320\"\u003e#1320\u003c/a\u003e from philsturgeon/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/d3475fc20416c33fe030c8aa3b09fa411f325bbd\"\u003e\u003ccode\u003ed3475fc\u003c/code\u003e\u003c/a\u003e Add spectral, an AJV util from a sponsor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/413afe01f518ea74d1740a7cb211df787c585544\"\u003e\u003ccode\u003e413afe0\u003c/code\u003e\u003c/a\u003e docs: v7.0.0-beta.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ajv-validator/ajv/commit/11e997bda2f3eecb445c1e5a07d96ef7e81c5f5d\"\u003e\u003ccode\u003e11e997b\u003c/code\u003e\u003c/a\u003e update readme for v7\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ajv-validator/ajv/compare/v6.12.6...v6.14.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.7.5 to 1.13.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.5\u003c/h2\u003e\n\u003ch2\u003eRelease 1.13.5\u003c/h2\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fixed a potential \u003cstrong\u003eDenial of Service\u003c/strong\u003e issue involving the \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBug fix:\u003c/strong\u003e Resolved an issue where \u003ccode\u003eAxiosError\u003c/code\u003e could be missing the \u003ccode\u003estatus\u003c/code\u003e field on and after \u003cstrong\u003ev1.13.3\u003c/strong\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch4\u003eSecurity\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix Denial of Service via \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix/5657. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7313\"\u003e#7313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure \u003ccode\u003estatus\u003c/code\u003e is present in \u003ccode\u003eAxiosError\u003c/code\u003e on and after v1.13.3. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFeatures / Improvements\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAdd input validation to \u003ccode\u003eisAbsoluteURL\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRefactor: bump minor package versions. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7356\"\u003e#7356\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDocumentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eClarify object-check comment. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix deprecated \u003ccode\u003eBuffer\u003c/code\u003e constructor usage and README formatting. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCI / Maintenance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eChore: fix issues with YAML. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7355\"\u003e#7355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: update workflow YAMLs. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: fix run condition. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDev deps: bump \u003ccode\u003ekarma-sourcemap-loader\u003c/code\u003e from 0.3.8 to 0.4.0. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChore(release): prepare release 1.13.5. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sachin11063\"\u003e\u003ccode\u003e@​sachin11063\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/asmitha-16\"\u003e\u003ccode\u003e@​asmitha-16\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog:\u003c/strong\u003e \u003ca href=\"https://github.com/axios/axios/compare/v1.13.4...v1.13.5\"\u003ehttps://github.com/axios/axios/compare/v1.13.4...v1.13.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.13.4\u003c/h2\u003e\n\u003ch2\u003eOverview\u003c/h2\u003e\n\u003cp\u003eThe release addresses issues discovered in v1.13.3 and includes significant CI/CD improvements.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v1.13.3...v1.13.4\"\u003ev1.13.3...v1.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's New in v1.13.4\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix: issues with version 1.13.3\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7352\"\u003e#7352\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ee90dfc28abffbb61e24974b2bd3139a4a40ac76\"\u003eee90dfc\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixed issues discovered in v1.13.3 release\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump peter-evans/create-pull-request from 7 to 8 in the github-actions group (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7334\"\u003e#7334\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/2d6ad5e48bd29b0b2b5e7e95fb473df98301543a\"\u003e2d6ad5e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors to this release\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/ashvin2005\" title=\"+1752/-4 ([#7218](https://github.com/axios/axios/issues/7218) [#7218](https://github.com/axios/axios/issues/7218) )\"\u003eAshvin Tiwari\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/mochinikunj\" title=\"+940/-12 ([#7294](https://github.com/axios/axios/issues/7294) [#7294](https://github.com/axios/axios/issues/7294) )\"\u003eNikunj Mochi\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/imanchalsingh\" title=\"+544/-102 ([#7169](https://github.com/axios/axios/issues/7169) [#7185](https://github.com/axios/axios/issues/7185) )\"\u003eAnchal Singh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/jasonsaayman\" title=\"+317/-73 ([#7334](https://github.com/axios/axios/issues/7334) [#7298](https://github.com/axios/axios/issues/7298) )\"\u003ejasonsaayman\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/brodo\" title=\"+99/-120 ([#5558](https://github.com/axios/axios/issues/5558) )\"\u003eJulian Dax\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/AKASHDHARDUBEY\" title=\"+167/-0 ([#7287](https://github.com/axios/axios/issues/7287) [#7288](https://github.com/axios/axios/issues/7288) )\"\u003eAkash Dhar Dubey\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/madhumitaaa\" title=\"+20/-68 ([#7198](https://github.com/axios/axios/issues/7198) )\"\u003eMadhumita\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Tackoil\" title=\"+80/-2 ([#6269](https://github.com/axios/axios/issues/6269) )\"\u003eTackoil\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/justindhillon\" title=\"+41/-41 ([#6324](https://github.com/axios/axios/issues/6324) [#6315](https://github.com/axios/axios/issues/6315) )\"\u003eJustin Dhillon\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/Rudrxxx\" title=\"+71/-2 ([#7257](https://github.com/axios/axios/issues/7257) )\"\u003eRudransh\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/WuMingDao\" title=\"+36/-36 ([#7215](https://github.com/axios/axios/issues/7215) )\"\u003eWuMingDao\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003c!-- raw HTML omitted --\u003e \u003ca href=\"https://github.com/codenomnom\" title=\"+70/-0 ([#7201](https://github.com/axios/axios/issues/7...\n\n_Description has been truncated_","html_url":"https://github.com/ssushant0011/backstage-plugins-for-aws/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ssushant0011%2Fbackstage-plugins-for-aws/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-02-21T16:08:14.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"3972278027","node_id":"PR_kwDOI8dS2c7FWfe8","number":82,"state":"open","title":"build(deps): bump the npm_and_yarn group across 1 directory with 21 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-21T16:08:14.000Z","updated_at":"2026-02-24T17:49:07.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"npm_and_yarn","update_count":21,"packages":[{"name":"tsup","old_version":"7.1.0","new_version":"8.3.5","repository_url":"https://github.com/egoist/tsup"},{"name":"@nestjs/common","old_version":"10.4.4","new_version":"10.4.16","repository_url":"https://github.com/nestjs/nest"},{"name":"@apollo/server","old_version":"4.11.3","new_version":"5.4.0","repository_url":"https://github.com/apollographql/apollo-server"},{"name":"nodemailer","old_version":"7.0.5","new_version":"7.0.11","repository_url":"https://github.com/nodemailer/nodemailer"},{"name":"mjml","old_version":"4.15.3","new_version":"4.18.0","repository_url":"https://github.com/mjmlio/mjml"},{"name":"@babel/traverse","old_version":"7.21.3","new_version":"7.29.0","repository_url":"https://github.com/babel/babel"},{"name":"@smithy/config-resolver","old_version":"3.0.8","new_version":"3.0.13","repository_url":"https://github.com/smithy-lang/smithy-typescript"},{"name":"axios","old_version":"1.3.4","new_version":"1.13.5","repository_url":"https://github.com/axios/axios"},{"name":"ejs","old_version":"3.1.9","new_version":"3.1.10","repository_url":"https://github.com/mde/ejs"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"js-yaml","old_version":"3.14.1","new_version":"3.14.2","repository_url":"https://github.com/nodeca/js-yaml"},{"name":"semver","old_version":"5.7.1","new_version":"5.7.2","repository_url":"https://github.com/npm/node-semver"},{"name":"sha.js","old_version":"2.4.11","new_version":"2.4.12","repository_url":"https://github.com/crypto-browserify/sha.js"},{"name":"tar","old_version":"6.1.13","new_version":"6.2.1","repository_url":"https://github.com/isaacs/node-tar"},{"name":"validator","old_version":"13.15.15","new_version":"13.15.26","repository_url":"https://github.com/validatorjs/validator.js"},{"name":"vite","old_version":"7.1.2","new_version":"7.3.1","repository_url":"https://github.com/vitejs/vite"},{"name":"ws","old_version":"7.5.9","new_version":"7.5.10","repository_url":"https://github.com/websockets/ws"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 17 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [tsup](https://github.com/egoist/tsup) | `7.1.0` | `8.3.5` |\n| [@nestjs/common](https://github.com/nestjs/nest/tree/HEAD/packages/common) | `10.4.4` | `10.4.16` |\n| [@apollo/server](https://github.com/apollographql/apollo-server/tree/HEAD/packages/server) | `4.11.3` | `5.4.0` |\n| [nodemailer](https://github.com/nodemailer/nodemailer) | `7.0.5` | `7.0.11` |\n| [mjml](https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml) | `4.15.3` | `4.18.0` |\n| [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.21.3` | `7.29.0` |\n| [@smithy/config-resolver](https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver) | `3.0.8` | `3.0.13` |\n| [axios](https://github.com/axios/axios) | `1.3.4` | `1.13.5` |\n| [ejs](https://github.com/mde/ejs) | `3.1.9` | `3.1.10` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` |\n| [sha.js](https://github.com/crypto-browserify/sha.js) | `2.4.11` | `2.4.12` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.13` | `6.2.1` |\n| [validator](https://github.com/validatorjs/validator.js) | `13.15.15` | `13.15.26` |\n| [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) | `7.1.2` | `7.3.1` |\n| [ws](https://github.com/websockets/ws) | `7.5.9` | `7.5.10` |\n\n\nUpdates `tsup` from 7.1.0 to 8.3.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/egoist/tsup/releases\"\u003etsup's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.3.5\u003c/h2\u003e\n\u003ch3\u003e   🐞 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRun \u003ccode\u003eexperimentalDts\u003c/code\u003e only once  -  by \u003ca href=\"https://github.com/aryaemami59\"\u003e\u003ccode\u003e@​aryaemami59\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1236\"\u003eegoist/tsup#1236\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/fddd451\"\u003e\u003c!-- raw HTML omitted --\u003e(fddd4)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.4...v8.3.5\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.4\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eNo significant changes\u003c/em\u003e\u003c/p\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.3...v8.3.4\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.3\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eNo significant changes\u003c/em\u003e\u003c/p\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.2...v8.3.3\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.1\u003c/h2\u003e\n\u003ch3\u003e   🚀 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ees2024\u003c/code\u003e target  -  by \u003ca href=\"https://github.com/sxzz\"\u003e\u003ccode\u003e@​sxzz\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/4c8cd7f\"\u003e\u003c!-- raw HTML omitted --\u003e(4c8cd)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e   🐞 Bug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport TS 5.6 for svelte  -  by \u003ca href=\"https://github.com/sxzz\"\u003e\u003ccode\u003e@​sxzz\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/28b9ce9\"\u003e\u003c!-- raw HTML omitted --\u003e(28b9c)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eneutral\u003c/code\u003e value to platform options in \u003ccode\u003eschema.json\u003c/code\u003e  -  by \u003ca href=\"https://github.com/venables\"\u003e\u003ccode\u003e@​venables\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/982\"\u003eegoist/tsup#982\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/a03db4c\"\u003e\u003c!-- raw HTML omitted --\u003e(a03db)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWider restriction for \u003ccode\u003etarget\u003c/code\u003e option  -  by \u003ca href=\"https://github.com/odanado\"\u003e\u003ccode\u003e@​odanado\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1118\"\u003eegoist/tsup#1118\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/1979b06\"\u003e\u003c!-- raw HTML omitted --\u003e(1979b)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eterser\u003c/code\u003e value to \u003ccode\u003eminify\u003c/code\u003e option in \u003ccode\u003eschema.json\u003c/code\u003e  -  by \u003ca href=\"https://github.com/damienbutt\"\u003e\u003ccode\u003e@​damienbutt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/991\"\u003eegoist/tsup#991\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/34951bf\"\u003e\u003c!-- raw HTML omitted --\u003e(34951)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eChange \u003ccode\u003enewlineKind\u003c/code\u003e to \u003ccode\u003elf\u003c/code\u003e for \u003ccode\u003eexperimentalDts\u003c/code\u003e  -  by \u003ca href=\"https://github.com/aryaemami59\"\u003e\u003ccode\u003e@​aryaemami59\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1234\"\u003eegoist/tsup#1234\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/4584b89\"\u003e\u003c!-- raw HTML omitted --\u003e(4584b)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable rollup \u003ccode\u003eoutput.compact\u003c/code\u003e when minify is enabled  -  by \u003ca href=\"https://github.com/hyrious\"\u003e\u003ccode\u003e@​hyrious\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1232\"\u003eegoist/tsup#1232\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/9cc86d6\"\u003e\u003c!-- raw HTML omitted --\u003e(9cc86)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eNode16\u003c/code\u003e and \u003ccode\u003eNodeNext\u003c/code\u003e module resolution in \u003ccode\u003eexperimentalDts\u003c/code\u003e  -  by \u003ca href=\"https://github.com/aryaemami59\"\u003e\u003ccode\u003e@​aryaemami59\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1225\"\u003eegoist/tsup#1225\u003c/a\u003e \u003ca href=\"https://github.com/egoist/tsup/commit/41c98ff\"\u003e\u003c!-- raw HTML omitted --\u003e(41c98)\u003c!-- raw HTML omitted --\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch5\u003e    \u003ca href=\"https://github.com/egoist/tsup/compare/v8.3.0...v8.3.1\"\u003eView changes on GitHub\u003c/a\u003e\u003c/h5\u003e\n\u003ch2\u003ev8.3.0\u003c/h2\u003e\n\u003ch1\u003e\u003ca href=\"https://github.com/egoist/tsup/compare/v8.2.4...v8.3.0\"\u003e8.3.0\u003c/a\u003e (2024-09-17)\u003c/h1\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix \u003ccode\u003eexperimentalDts\u003c/code\u003e file cleaning and watching (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1199\"\u003e#1199\u003c/a\u003e) (\u003ca href=\"https://github.com/egoist/tsup/commit/76dc18b7036c408e6fc5254e3eeb3430f65c7866\"\u003e76dc18b\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd support for \u003ccode\u003ects\u003c/code\u003e and \u003ccode\u003emts\u003c/code\u003e config files (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1178\"\u003e#1178\u003c/a\u003e) (\u003ca href=\"https://github.com/egoist/tsup/commit/ec811b3b7d22479c230292a024f1dee5d171b0ea\"\u003eec811b3\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd support for async \u003ccode\u003einjectStyle\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1193\"\u003e#1193\u003c/a\u003e) (\u003ca href=\"https://github.com/egoist/tsup/commit/f25a9db77d22c91ea8f6bd1ed31ea8415d0a7d5d\"\u003ef25a9db\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev8.2.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/egoist/tsup/compare/v8.2.3...v8.2.4\"\u003e8.2.4\u003c/a\u003e (2024-08-02)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/cd03e1e00ec2bd6676ae1837cbc7e618ab6a2362\"\u003e\u003ccode\u003ecd03e1e\u003c/code\u003e\u003c/a\u003e chore: release v8.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/fddd451c3d63cd5f851a0e7ab091c0550e24f213\"\u003e\u003ccode\u003efddd451\u003c/code\u003e\u003c/a\u003e fix: run \u003ccode\u003eexperimentalDts\u003c/code\u003e only once (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1236\"\u003e#1236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/21b119374880e9d9109c5d8658429678a1de8f45\"\u003e\u003ccode\u003e21b1193\u003c/code\u003e\u003c/a\u003e chore: release v8.3.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/580e03dc996107c4790c64df5b9ca6cebb4b7de9\"\u003e\u003ccode\u003e580e03d\u003c/code\u003e\u003c/a\u003e ci: fix release workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/01b38f295f6e1fa240676213817a9d315fdffd60\"\u003e\u003ccode\u003e01b38f2\u003c/code\u003e\u003c/a\u003e chore: release v8.3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/4f5b71e42887a5147ee6d95d2d7f89f789887f0d\"\u003e\u003ccode\u003e4f5b71e\u003c/code\u003e\u003c/a\u003e ci: fix release workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/e80dad6889366941e015faadce05cbe2eeca3c17\"\u003e\u003ccode\u003ee80dad6\u003c/code\u003e\u003c/a\u003e chore: release v8.3.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/f4af79a1b890307a28d0d986a0c06dc92192c222\"\u003e\u003ccode\u003ef4af79a\u003c/code\u003e\u003c/a\u003e ci: fix release workflow (\u003ca href=\"https://redirect.github.com/egoist/tsup/issues/1241\"\u003e#1241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/4b72d61a8e7a2e450e71ffe8806739f2e1122f54\"\u003e\u003ccode\u003e4b72d61\u003c/code\u003e\u003c/a\u003e chore: release v8.3.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/egoist/tsup/commit/41c98ff07aa03ef0e9d65407b20c9465acbf0d83\"\u003e\u003ccode\u003e41c98ff\u003c/code\u003e\u003c/a\u003e fix: support \u003ccode\u003eNode16\u003c/code\u003e and \u003ccode\u003eNodeNext\u003c/code\u003e module resolution in \u003ccode\u003eexperimentalDts\u003c/code\u003e (...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/egoist/tsup/compare/v7.1.0...v8.3.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@nestjs/common` from 10.4.4 to 10.4.16\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nestjs/nest/releases\"\u003e\u003ccode\u003e@​nestjs/common\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev10.4.16\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(common): introduce magic file type validator to nestjs common by \u003ca href=\"https://github.com/Chathula\"\u003e\u003ccode\u003e@​Chathula\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14948\"\u003enestjs/nest#14948\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/nestjs/nest/compare/v10.4.15...v10.4.16\"\u003ehttps://github.com/nestjs/nest/compare/v10.4.15...v10.4.16\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev10.4.15 (2024-12-09)\u003c/h2\u003e\n\u003ch4\u003eDependencies\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eplatform-express\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14282\"\u003e#14282\u003c/a\u003e fix(deps): update dependency express to v4.21.2 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev10.4.13 (2024-12-03)\u003c/h2\u003e\n\u003ch4\u003eBug fixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecommon\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14256\"\u003e#14256\u003c/a\u003e chore(common): Add type declaration for RawBody decorator with pipes (\u003ca href=\"https://github.com/sapenlei\"\u003e\u003ccode\u003e@​sapenlei\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDependencies\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14257\"\u003e#14257\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​fastify/static\u003c/code\u003e to v7.0.4 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14258\"\u003e#14258\u003c/a\u003e fix(deps): update dependency \u003ccode\u003e@​nestjs/sequelize\u003c/code\u003e to v10.0.1 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14249\"\u003e#14249\u003c/a\u003e chore(deps): bump \u003ccode\u003e@​apollo/gateway\u003c/code\u003e from 2.4.8 to 2.8.5 in /sample/32-graphql-federation-schema-first/users-application (\u003ca href=\"https://github.com/apps/dependabot\"\u003e\u003ccode\u003e@​dependabot[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14250\"\u003e#14250\u003c/a\u003e chore(deps): update jest monorepo (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14245\"\u003e#14245\u003c/a\u003e chore(deps): update dependency mqtt to v5.10.3 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14247\"\u003e#14247\u003c/a\u003e fix(deps): update nest monorepo to v10.4.12 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14251\"\u003e#14251\u003c/a\u003e chore(deps-dev): bump graphql-tools from 9.0.3 to 9.0.5 (\u003ca href=\"https://github.com/apps/dependabot\"\u003e\u003ccode\u003e@​dependabot[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14246\"\u003e#14246\u003c/a\u003e chore(deps): update nest monorepo (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 3\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eKamil Mysliwiec (\u003ca href=\"https://github.com/kamilmysliwiec\"\u003e\u003ccode\u003e@​kamilmysliwiec\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMicael Levi L. Cavalcante (\u003ca href=\"https://github.com/micalevisk\"\u003e\u003ccode\u003e@​micalevisk\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esapenlei (\u003ca href=\"https://github.com/sapenlei\"\u003e\u003ccode\u003e@​sapenlei\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev10.4.12 (2024-11-29)\u003c/h2\u003e\n\u003ch4\u003eBug fixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ecommon\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14241\"\u003e#14241\u003c/a\u003e fix(common): enforce string type in validationpipe (\u003ca href=\"https://github.com/LhonRafaat\"\u003e\u003ccode\u003e@​LhonRafaat\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDependencies\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eOther\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14243\"\u003e#14243\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/node\u003c/code\u003e to v20.17.9 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14240\"\u003e#14240\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/multer\u003c/code\u003e to v1.4.12 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14239\"\u003e#14239\u003c/a\u003e chore(deps): update dependency \u003ccode\u003e@​types/chai\u003c/code\u003e to v4.3.20 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14237\"\u003e#14237\u003c/a\u003e chore(deps): update confluentinc/cp-zookeeper docker tag to v7.7.2 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14236\"\u003e#14236\u003c/a\u003e chore(deps): update confluentinc/cp-kafka docker tag to v7.7.2 (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/12253\"\u003e#12253\u003c/a\u003e fix(deps): update apollo graphql packages (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14235\"\u003e#14235\u003c/a\u003e chore(deps-dev): bump \u003ccode\u003e@​commitlint/config-angular\u003c/code\u003e from 19.5.0 to 19.6.0 (\u003ca href=\"https://github.com/apps/dependabot\"\u003e\u003ccode\u003e@​dependabot[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/nestjs/nest/pull/14233\"\u003e#14233\u003c/a\u003e chore(deps): update nest monorepo (\u003ca href=\"https://github.com/apps/renovate\"\u003e\u003ccode\u003e@​renovate[bot]\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6c8aec63b4828ecb96dd62c5c5edb838539c45e6\"\u003e\u003ccode\u003e6c8aec6\u003c/code\u003e\u003c/a\u003e chore(\u003ca href=\"https://github.com/nestjs\"\u003e\u003ccode\u003e@​nestjs\u003c/code\u003e\u003c/a\u003e) publish v10.4.16 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/2b9e132f6a3bb60f450076d0eacbef23be17a3c0\"\u003e\u003ccode\u003e2b9e132\u003c/code\u003e\u003c/a\u003e chore: update outdated tests, make file-type optional\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/cb0d6506b34f771c3946be1c6b980abaad31a348\"\u003e\u003ccode\u003ecb0d650\u003c/code\u003e\u003c/a\u003e chore: remove duplicate packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6196ab21502e762e4f497867a7f265047b4e0cd6\"\u003e\u003ccode\u003e6196ab2\u003c/code\u003e\u003c/a\u003e Merge branch 'Chathula-fix-nestjs-common-mime-validator'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/0ac7959927d0787a19039ed9eafe61d15ed10143\"\u003e\u003ccode\u003e0ac7959\u003c/code\u003e\u003c/a\u003e chore: minor tweaks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/312a54ae2e20bd294ef1ccd5b6ca8476714c8a5a\"\u003e\u003ccode\u003e312a54a\u003c/code\u003e\u003c/a\u003e Update packages/common/pipes/file/file-type.validator.ts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/a28fc033f49ce7ec0432478a52d2a9a518d896d4\"\u003e\u003ccode\u003ea28fc03\u003c/code\u003e\u003c/a\u003e refactor(common): move back file type validator options type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/07b4b3829ebefc897ad547a08d9e954e5d13f2ce\"\u003e\u003ccode\u003e07b4b38\u003c/code\u003e\u003c/a\u003e refactor(common): move file-type package to peer dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/0b7af8ab0777ba6fcebaa4c9c958b77b1fb95326\"\u003e\u003ccode\u003e0b7af8a\u003c/code\u003e\u003c/a\u003e refactor(common): refactor code to use simple eval\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nestjs/nest/commit/6953b7a79e3e326eac01875806ee3f984fe702da\"\u003e\u003ccode\u003e6953b7a\u003c/code\u003e\u003c/a\u003e fix(common): used eval import\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nestjs/nest/commits/v10.4.16/packages/common\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@apollo/server` from 4.11.3 to 5.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apollographql/apollo-server/releases\"\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server-integration-testsuite\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.4.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.4.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/phryneas\"\u003e\u003ccode\u003e@​phryneas\u003c/code\u003e\u003c/a\u003e! - ⚠️ SECURITY \u003ccode\u003e@apollo/server/standalone\u003c/code\u003e:\u003c/p\u003e\n\u003cp\u003eThe default configuration of \u003ccode\u003estartStandaloneServer\u003c/code\u003e was vulnerable to denial of service (DoS) attacks through specially crafted request bodies with exotic character set encodings.\u003c/p\u003e\n\u003cp\u003eIn accordance with \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc7159#section-8.1\"\u003eRFC 7159\u003c/a\u003e, we now only accept request bodies encoded in UTF-8, UTF-16 (LE or BE), or UTF-32 (LE or BE).\nAny other character set will be rejected with a \u003ccode\u003e415 Unsupported Media Type\u003c/code\u003e error.\nNote that the more recent JSON RFC, \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc8259#section-8.1\"\u003eRFC 8259\u003c/a\u003e, is more strict and will only allow UTF-8.\nSince this is a minor release, we have chosen to remain compatible with the more permissive RFC 7159 for now.\nIn a future major release, we may tighten this restriction further to only allow UTF-8.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eIf you were not using \u003ccode\u003estartStandaloneServer\u003c/code\u003e, you were not affected by this vulnerability.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eGenerally, please note that we provide \u003ccode\u003estartStandaloneServer\u003c/code\u003e as a convenience tool for quickly getting started with Apollo Server.\nFor production deployments, we recommend using Apollo Server with a more fully-featured web server framework such as Express, Koa, or Fastify, where you have more control over security-related configuration options.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server-integration-testsuite\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.3.0\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [\u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e, \u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e]:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.3.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e\u003ca href=\"https://github.com/5\"\u003e\u003ccode\u003e@​5\u003c/code\u003e\u003c/a\u003e.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8062\"\u003e#8062\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/cristunaranjo\"\u003e\u003ccode\u003e@​cristunaranjo\u003c/code\u003e\u003c/a\u003e! - Allow configuration of graphql execution options (maxCoercionErrors)\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n  resolvers,\n  executionOptions: {\n    maxCoercionErrors: 50,\n  },\n});\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8014\"\u003e#8014\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/mo4islona\"\u003e\u003ccode\u003e@​mo4islona\u003c/code\u003e\u003c/a\u003e! - Expose \u003ccode\u003egraphql\u003c/code\u003e validation options.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/apollographql/apollo-server/blob/main/packages/server/CHANGELOG.md\"\u003e\u003ccode\u003e@​apollo/server\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.4.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/phryneas\"\u003e\u003ccode\u003e@​phryneas\u003c/code\u003e\u003c/a\u003e! - ⚠️ SECURITY \u003ccode\u003e@apollo/server/standalone\u003c/code\u003e:\u003c/p\u003e\n\u003cp\u003eThe default configuration of \u003ccode\u003estartStandaloneServer\u003c/code\u003e was vulnerable to denial of service (DoS) attacks through specially crafted request bodies with exotic character set encodings.\u003c/p\u003e\n\u003cp\u003eIn accordance with \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc7159#section-8.1\"\u003eRFC 7159\u003c/a\u003e, we now only accept request bodies encoded in UTF-8, UTF-16 (LE or BE), or UTF-32 (LE or BE).\nAny other character set will be rejected with a \u003ccode\u003e415 Unsupported Media Type\u003c/code\u003e error.\nNote that the more recent JSON RFC, \u003ca href=\"https://datatracker.ietf.org/doc/html/rfc8259#section-8.1\"\u003eRFC 8259\u003c/a\u003e, is more strict and will only allow UTF-8.\nSince this is a minor release, we have chosen to remain compatible with the more permissive RFC 7159 for now.\nIn a future major release, we may tighten this restriction further to only allow UTF-8.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eIf you were not using \u003ccode\u003estartStandaloneServer\u003c/code\u003e, you were not affected by this vulnerability.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eGenerally, please note that we provide \u003ccode\u003estartStandaloneServer\u003c/code\u003e as a convenience tool for quickly getting started with Apollo Server.\nFor production deployments, we recommend using Apollo Server with a more fully-featured web server framework such as Express, Koa, or Fastify, where you have more control over security-related configuration options.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.3.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8062\"\u003e#8062\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/cristunaranjo\"\u003e\u003ccode\u003e@​cristunaranjo\u003c/code\u003e\u003c/a\u003e! - Allow configuration of graphql execution options (maxCoercionErrors)\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n  resolvers,\n  executionOptions: {\n    maxCoercionErrors: 50,\n  },\n});\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/apollographql/apollo-server/pull/8014\"\u003e#8014\u003c/a\u003e \u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e Thanks \u003ca href=\"https://github.com/mo4islona\"\u003e\u003ccode\u003e@​mo4islona\u003c/code\u003e\u003c/a\u003e! - Expose \u003ccode\u003egraphql\u003c/code\u003e validation options.\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003econst server = new ApolloServer({\n  typeDefs,\n  resolvers,\n  validationOptions: {\n    maxErrors: 10,\n  },\n});\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e5.2.0\u003c/h2\u003e\n\u003ch3\u003eMinor Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/ad45d1505d867de4c2761b7935855445ef7641e7\"\u003e\u003ccode\u003ead45d15\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8179\"\u003e#8179\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/d25a5bdc377826ad424fcf7f8d1d062055911643\"\u003e\u003ccode\u003ed25a5bd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/443e54747d44c1d7c213d019936514dec024b450\"\u003e\u003ccode\u003e443e547\u003c/code\u003e\u003c/a\u003e fix repository urls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/28d6d47ff636751807141267c329acb736c177b6\"\u003e\u003ccode\u003e28d6d47\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8172\"\u003e#8172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/26320bccd77c6074d4a38119294f153f64e52d96\"\u003e\u003ccode\u003e26320bc\u003c/code\u003e\u003c/a\u003e feat: Allow configuration of graphql validation options \u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8014\"\u003e#8014\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/f2c16a7caff895a8b97c5a800405795cb19ba624\"\u003e\u003ccode\u003ef2c16a7\u003c/code\u003e\u003c/a\u003e bump dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/8e54e5827791666e36082ad49d19c77f050355ac\"\u003e\u003ccode\u003e8e54e58\u003c/code\u003e\u003c/a\u003e feat: Allow configuration of graphql execution options(maxCoercionErrors)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/7be3686ae62fb04bb4d0bfddb465d5e89631d4e4\"\u003e\u003ccode\u003e7be3686\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8163\"\u003e#8163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/51acbebde7cc2759efacaa9eccb10aa3fee6b368\"\u003e\u003ccode\u003e51acbeb\u003c/code\u003e\u003c/a\u003e Require legacy incremental execute as an \u003ccode\u003eApolloServer\u003c/code\u003e option instead of a d...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apollographql/apollo-server/commit/ae1be2985814212bc4df3556c930cb84f7773381\"\u003e\u003ccode\u003eae1be29\u003c/code\u003e\u003c/a\u003e Version Packages (\u003ca href=\"https://github.com/apollographql/apollo-server/tree/HEAD/packages/server/issues/8155\"\u003e#8155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/apollographql/apollo-server/commits/@apollo/server@5.4.0/packages/server\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​apollo/server\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `nodemailer` from 7.0.5 to 7.0.11\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodemailer/nodemailer/releases\"\u003enodemailer's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.11\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.10...v7.0.11\"\u003e7.0.11\u003c/a\u003e (2025-11-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eprevent stack overflow DoS in addressparser with deeply nested groups (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003eb61b9c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.10\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.9...v7.0.10\"\u003e7.0.10\u003c/a\u003e (2025-10-23)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncrease data URI size limit from 100KB to 50MB and preserve content type (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e28dbf3f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.9\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.8...v7.0.9\"\u003e7.0.9\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e Trying to fix release proecess by upgrading Node version in runner (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/579fce4683eb588891613a6c9a00d8092e8c62d1\"\u003e579fce4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.8\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.7...v7.0.8\"\u003e7.0.8\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e flatten nested groups per RFC 5322 (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/8f8a77c67f0ba94ddf4e16c68f604a5920fb5d26\"\u003e8f8a77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.7\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.6...v7.0.7\"\u003e7.0.7\u003c/a\u003e (2025-10-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e Fixed addressparser handling of quoted nested email addresses (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626\"\u003e1150d99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edns:\u003c/strong\u003e add memory leak prevention for DNS cache (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/0240d6795ded6d8008d102161a729f120b6d786a\"\u003e0240d67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elinter:\u003c/strong\u003e Updated eslint and created prettier formatting task (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/df13b7487e368acded35e45d0887d23c89c9177a\"\u003edf13b74\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefresh expired DNS cache on error (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1759\"\u003e#1759\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/ea0fc5a6633a3546f4b00fcf2f428e9ca732cdb6\"\u003eea0fc5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve linter errors in DNS cache tests (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3b8982c1f24508089a8757b74039000a4498b158\"\u003e3b8982c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.6\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6\"\u003e7.0.6\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md\"\u003enodemailer's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.10...v7.0.11\"\u003e7.0.11\u003c/a\u003e (2025-11-26)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eprevent stack overflow DoS in addressparser with deeply nested groups (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003eb61b9c0\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.9...v7.0.10\"\u003e7.0.10\u003c/a\u003e (2025-10-23)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncrease data URI size limit from 100KB to 50MB and preserve content type (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e28dbf3f\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.8...v7.0.9\"\u003e7.0.9\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003erelease:\u003c/strong\u003e Trying to fix release proecess by upgrading Node version in runner (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/579fce4683eb588891613a6c9a00d8092e8c62d1\"\u003e579fce4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.7...v7.0.8\"\u003e7.0.8\u003c/a\u003e (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e flatten nested groups per RFC 5322 (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/8f8a77c67f0ba94ddf4e16c68f604a5920fb5d26\"\u003e8f8a77c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.6...v7.0.7\"\u003e7.0.7\u003c/a\u003e (2025-10-05)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaddressparser:\u003c/strong\u003e Fixed addressparser handling of quoted nested email addresses (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626\"\u003e1150d99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edns:\u003c/strong\u003e add memory leak prevention for DNS cache (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/0240d6795ded6d8008d102161a729f120b6d786a\"\u003e0240d67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003elinter:\u003c/strong\u003e Updated eslint and created prettier formatting task (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/df13b7487e368acded35e45d0887d23c89c9177a\"\u003edf13b74\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefresh expired DNS cache on error (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1759\"\u003e#1759\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/ea0fc5a6633a3546f4b00fcf2f428e9ca732cdb6\"\u003eea0fc5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eresolve linter errors in DNS cache tests (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3b8982c1f24508089a8757b74039000a4498b158\"\u003e3b8982c\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.6\"\u003e7.0.6\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eencoder:\u003c/strong\u003e avoid silent data loss by properly flushing trailing base64 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1747\"\u003e#1747\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/01ae76f2cfe991c0c3fe80170f236da60531496b\"\u003e01ae76f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehandle multiple XOAUTH2 token requests correctly (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1754\"\u003e#1754\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/dbe00286351cddf012726a41a96ae613d30a34ee\"\u003edbe0028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReDoS vulnerability in parseDataURI and _processDataUrl (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1755\"\u003e#1755\u003c/a\u003e) (\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/90b3e24d23929ebf9f4e16261049b40ee4055a39\"\u003e90b3e24\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/3d17dbec49ab3e3f0e13e62871e5534be5b99994\"\u003e\u003ccode\u003e3d17dbe\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.11 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1783\"\u003e#1783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/15879f8bd5a94fe608fd7cf1d3142de14527eadf\"\u003e\u003ccode\u003e15879f8\u003c/code\u003e\u003c/a\u003e Bumped dev dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/b61b9c0cfd682b6f647754ca338373b68336a150\"\u003e\u003ccode\u003eb61b9c0\u003c/code\u003e\u003c/a\u003e fix: prevent stack overflow DoS in addressparser with deeply nested groups\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/4175e4baf92ffc4e20791a11fc0886025228a2ac\"\u003e\u003ccode\u003e4175e4b\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.10 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1776\"\u003e#1776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/d882ccfe8d37723e7017c1966608dcf8217d8a82\"\u003e\u003ccode\u003ed882ccf\u003c/code\u003e\u003c/a\u003e Merge branch 'master' of github.com:nodemailer/nodemailer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/1d7e4f786bccdc3e0a1bf0140d07ce5aaf29d82a\"\u003e\u003ccode\u003e1d7e4f7\u003c/code\u003e\u003c/a\u003e Bumped deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/10bd871656b331a674feabbcfc1d6363918cb244\"\u003e\u003ccode\u003e10bd871\u003c/code\u003e\u003c/a\u003e chore: correct typo in variable name (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1773\"\u003e#1773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/28dbf3fe129653f5756c150a98dc40593bfb2cfe\"\u003e\u003ccode\u003e28dbf3f\u003c/code\u003e\u003c/a\u003e fix: Increase data URI size limit from 100KB to 50MB and preserve content type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/92ae1c49e3a33767996db9ddfd04784a7b9595d7\"\u003e\u003ccode\u003e92ae1c4\u003c/code\u003e\u003c/a\u003e chore(master): release 7.0.9 (\u003ca href=\"https://redirect.github.com/nodemailer/nodemailer/issues/1769\"\u003e#1769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodemailer/nodemailer/commit/c675d9e7e57d0d90bde7d71afb0b2739fc071233\"\u003e\u003ccode\u003ec675d9e\u003c/code\u003e\u003c/a\u003e Merge branch 'master' of github.com:nodemailer/nodemailer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nodemailer/nodemailer/compare/v7.0.5...v7.0.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for nodemailer since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `mjml` from 4.15.3 to 4.18.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/mjmlio/mjml/releases\"\u003emjml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eContent updates by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3021\"\u003emjmlio/mjml#3021\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mjmlio/mjml/compare/v4.17.2...v4.18.0\"\u003ehttps://github.com/mjmlio/mjml/compare/v4.17.2...v4.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emj-section: do not inherit attributes from context \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3019\"\u003e#3019\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3020\"\u003emjmlio/mjml#3020\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mjmlio/mjml/compare/v4.17.1...v4.17.2\"\u003ehttps://github.com/mjmlio/mjml/compare/v4.17.1...v4.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emjml-wrapper: allowed attributes not inheriting \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3011\"\u003e#3011\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3012\"\u003emjmlio/mjml#3012\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mjmlio/mjml/compare/v4.17.0...v4.17.1\"\u003ehttps://github.com/mjmlio/mjml/compare/v4.17.0...v4.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emjml-wrapper: add gap between sections \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2977\"\u003e#2977\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3004\"\u003emjmlio/mjml#3004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003emjml-social: respect align and icon-height attributes \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3001\"\u003e#3001\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3002\"\u003emjmlio/mjml#3002\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-carousel: hide thumbnails if not supported  \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2999\"\u003e#2999\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3000\"\u003emjmlio/mjml#3000\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-accordion: respect font-family and padding-x attributes  \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2997\"\u003e#2997\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2998\"\u003emjmlio/mjml#2998\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-table: respect cellspacing \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2995\"\u003e#2995\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2996\"\u003emjmlio/mjml#2996\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-navbar: fix ico-padding-x that was not working \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2991\"\u003e#2991\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2992\"\u003emjmlio/mjml#2992\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emjml-column: fix border-radius that was not working \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2989\"\u003e#2989\u003c/a\u003e by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2990\"\u003emjmlio/mjml#2990\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded link to support matrix by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3005\"\u003emjmlio/mjml#3005\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate image URLs by \u003ca href=\"https://github.com/dazgreer\"\u003e\u003ccode\u003e@​dazgreer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/3007\"\u003emjmlio/mjml#3007\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExamples indenting by \u003ca href=\"https://github.com/EtienneHosman\"\u003e\u003ccode\u003e@​EtienneHosman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mjmlio/mjml/pull/2974\"\u003emjmlio/mjml#2974\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/7f4872c48af877d98448335fb9002585cfc8fcbf\"\u003e\u003ccode\u003e7f4872c\u003c/code\u003e\u003c/a\u003e v4.18.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/95b9ebdd28ce497f37d8c20160fbbd36df2d7d3e\"\u003e\u003ccode\u003e95b9ebd\u003c/code\u003e\u003c/a\u003e v4.17.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/3f3b0bcc5f297d9bc84999908c213bc42d9792eb\"\u003e\u003ccode\u003e3f3b0bc\u003c/code\u003e\u003c/a\u003e v4.17.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/375c593ce24485867db35a26218e9d89d4f386cc\"\u003e\u003ccode\u003e375c593\u003c/code\u003e\u003c/a\u003e v4.17.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/81f37eafac77ea80aeabb5ea4d7ffc4eb01263c3\"\u003e\u003ccode\u003e81f37ea\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2990\"\u003e#2990\u003c/a\u003e from mjmlio/bugfix/MJML-36-mj-column_border_radius\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/025e3fc31bb23422c8cde70332e1549249f380a1\"\u003e\u003ccode\u003e025e3fc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2992\"\u003e#2992\u003c/a\u003e from mjmlio/bugfix/MJML-37-mj-navbar_ico-padding-x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/424cac84c5286bf334982ed29a9e04ec3ec030a8\"\u003e\u003ccode\u003e424cac8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2996\"\u003e#2996\u003c/a\u003e from mjmlio/bugfix/MJML-39-mj-table-cellspacing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/4d975b09482a3aed157f92096a4ef29f9d0dfe3d\"\u003e\u003ccode\u003e4d975b0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/2998\"\u003e#2998\u003c/a\u003e from mjmlio/bugfix/MJML-43-mj-accordion_font-family_...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/4d41b9d81eb08f930d93ed22d570192b9236d8e1\"\u003e\u003ccode\u003e4d41b9d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3000\"\u003e#3000\u003c/a\u003e from mjmlio/feature/MJML-49-mj-carousel_thumbnails_f...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mjmlio/mjml/commit/9bac7c6cb11cf88c0e9518a0b9e30262ea7414b1\"\u003e\u003ccode\u003e9bac7c6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://github.com/mjmlio/mjml/tree/HEAD/packages/mjml/issues/3002\"\u003e#3002\u003c/a\u003e from mjmlio/bugfix/MJML-41-mj-social_align_icon-height\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/mjmlio/mjml/commits/v4.18.0/packages/mjml\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~totocap\"\u003etotocap\u003c/a\u003e, a new releaser for mjml since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@babel/traverse` from 7.21.3 to 7.29.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/babel/babel/releases\"\u003e\u003ccode\u003e@​babel/traverse\u003c/code\u003e's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.29.0 (2026-01-31)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e for your first PR!\u003c/p\u003e\n\u003ch4\u003e:rocket: New Feature\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17750\"\u003e#17750\u003c/a\u003e [7.x backport] Add attributes import declaration builder (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17663\"\u003e#17663\u003c/a\u003e [7.x backport] feat(standalone): export async transform (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17725\"\u003e#17725\u003c/a\u003e [7.x backport] feat: read standalone targets from data-targets (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-parser\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17765\"\u003e#17765\u003c/a\u003e fix(parser): correctly parse type assertions in \u003ccode\u003eextends\u003c/code\u003e clause (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17723\"\u003e#17723\u003c/a\u003e [7.x backport] fix(parser): improve super type argument parsing (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17708\"\u003e#17708\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentPath is given (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-block-scoping\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17737\"\u003e#17737\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates shadowing variable (\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:running_woman: Performance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-generator\u003c/code\u003e, \u003ccode\u003ebabel-runtime-corejs3\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17642\"\u003e#17642\u003c/a\u003e [Babel 7] Improve generator performance (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCommitters: 6\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eDavid (\u003ca href=\"https://github.com/simbahax\"\u003e\u003ccode\u003e@​simbahax\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHuáng Jùnliàng (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNicolò Ribaudo (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magic-akari\"\u003e\u003ccode\u003e@​magic-akari\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.28.6 (2026-01-12)\u003c/h2\u003e\n\u003cp\u003eThanks \u003ca href=\"https://github.com/kadhirash\"\u003e\u003ccode\u003e@​kadhirash\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/kolvian\"\u003e\u003ccode\u003e@​kolvian\u003c/code\u003e\u003c/a\u003e for your first PRs!\u003c/p\u003e\n\u003ch4\u003e:bug: Bug Fix\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-cli\u003c/code\u003e, \u003ccode\u003ebabel-code-frame\u003c/code\u003e, \u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-helper-check-duplicate-nodes\u003c/code\u003e, \u003ccode\u003ebabel-helper-fixtures\u003c/code\u003e, \u003ccode\u003ebabel-helper-plugin-utils\u003c/code\u003e, \u003ccode\u003ebabel-node\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-flow-comments\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-modules-commonjs\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-property-mutators\u003c/code\u003e, \u003ccode\u003ebabel-preset-env\u003c/code\u003e, \u003ccode\u003ebabel-traverse\u003c/code\u003e, \u003ccode\u003ebabel-types\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17589\"\u003e#17589\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-regenerator\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17556\"\u003e#17556\u003c/a\u003e fix: \u003ccode\u003etransform-regenerator\u003c/code\u003e correctly handles scope (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-transform-react-jsx\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17538\"\u003e#17538\u003c/a\u003e fix: Keep jsx comments (\u003ca href=\"https://github.com/liuxingbaoyu\"\u003e\u003ccode\u003e@​liuxingbaoyu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:nail_care: Polish\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-core\u003c/code\u003e, \u003ccode\u003ebabel-standalone\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17606\"\u003e#17606\u003c/a\u003e Polish(standalone): improve message on invalid preset/plugin (\u003ca href=\"https://github.com/JLHwung\"\u003e\u003ccode\u003e@​JLHwung\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003e:house: Internal\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ebabel-plugin-bugfix-v8-static-class-fields-redefine-readonly\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-attributes-to-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-proposal-import-wasm-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-async-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-decorators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-destructuring-private\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-do-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-export-default-from\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-flow\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-bind\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-function-sent\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-assertions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-attributes\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-defer\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-import-source\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-jsx\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-module-blocks\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-optional-chaining-assign\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-partial-application\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-pipeline-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-throw-expressions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-syntax-typescript\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-generator-functions\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-async-to-generator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-properties\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-class-static-block\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-dotall-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-duplicate-named-capturing-groups-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-explicit-resource-management\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-exponentiation-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-json-strings\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-logical-assignment-operators\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-nullish-coalescing-operator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-numeric-separator\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-object-rest-spread\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-catch-binding\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-optional-chaining\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-methods\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-private-property-in-object\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-regexp-modifiers\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-property-regex\u003c/code\u003e, \u003ccode\u003ebabel-plugin-transform-unicode-sets-regex\u003c/code\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/babel/babel/pull/17580\"\u003e#17580\u003c/a\u003e Allow Babel 8 in compatible Babel 7 plugins (\u003ca href=\"https://github.com/nicolo-ribaudo\"\u003e\u003ccode\u003e@​nicolo-ribaudo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aa8394e454337d118ac3d40bfa3ee1a3cb3f3ed2\"\u003e\u003ccode\u003eaa8394e\u003c/code\u003e\u003c/a\u003e v7.29.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/84366a8ea453814e732784db74cf2e2b6635eb6f\"\u003e\u003ccode\u003e84366a8\u003c/code\u003e\u003c/a\u003e fix(traverse): provide a hub when traversing a File or Program and no parentP...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/229eb452c5d5d2be0dc138ec2956aff7ff1057d7\"\u003e\u003ccode\u003e229eb45\u003c/code\u003e\u003c/a\u003e [7.x backport] fix: Rename switch discriminant references when body creates s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/d7f400889567ae18ef9ac41b024b5120f6060e17\"\u003e\u003ccode\u003ed7f4008\u003c/code\u003e\u003c/a\u003e v7.28.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/905bc22b2fff23673eabe467815c67b29bf8bba2\"\u003e\u003ccode\u003e905bc22\u003c/code\u003e\u003c/a\u003e fix: lint errors in main branch (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17612\"\u003e#17612\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/a03e2b63ae530674e866b60350b7eb4a5fcb5f59\"\u003e\u003ccode\u003ea03e2b6\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003epath.evaluate\u003c/code\u003e correctly returns \u003ccode\u003econfident\u003c/code\u003e (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17584\"\u003e#17584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/aac2c37e11ad58905f7f9606103074e80bacbbcd\"\u003e\u003ccode\u003eaac2c37\u003c/code\u003e\u003c/a\u003e chore: Use Gulpfile.mts (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17579\"\u003e#17579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/65c4a6b3ee0e1d32801529e841572bb22534e1f3\"\u003e\u003ccode\u003e65c4a6b\u003c/code\u003e\u003c/a\u003e [Babel 8] fix: Improve \u003ccode\u003etraverse\u003c/code\u003e types (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17574\"\u003e#17574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/99dcba5e71de3bd81ce14077cfa5b6df58e9b177\"\u003e\u003ccode\u003e99dcba5\u003c/code\u003e\u003c/a\u003e chore: enable some ts-eslint rules (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17592\"\u003e#17592\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/babel/babel/commit/c92c4919771105140015167f25f7bacac77c90d9\"\u003e\u003ccode\u003ec92c491\u003c/code\u003e\u003c/a\u003e Improve Unicode handling in code-frame tokenizer (\u003ca href=\"https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/17589\"\u003e#17589\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/babel/babel/commits/v7.29.0/packages/babel-traverse\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for \u003ccode\u003e@​babel/traverse\u003c/code\u003e since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `@smithy/config-resolver` from 3.0.8 to 3.0.13\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/blob/main/packages/config-resolver/CHANGELOG.md\"\u003e\u003ccode\u003e@​smithy/config-resolver\u003c/code\u003e's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e3.0.13\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [b52b4e8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.2\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.12\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.11\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.12\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [fcd5ca8]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.1\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.11\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.10\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.11\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [cd1929b]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.7.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.10\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.9\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.10\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [84bec05]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.6.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.9\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.8\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.0.9\u003c/h2\u003e\n\u003ch3\u003ePatch Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated dependencies [a4c1285]\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/types\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.5.0\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/node-config-provider\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.1.8\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e@​smithy/util-middleware\u003c/code\u003e\u003ca href=\"https://github.com/3\"\u003e\u003ccode\u003e@​3\u003c/code\u003e\u003c/a\u003e.0.7\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/50d8c5457e7feea41169a37fb2fdb1e448f82e9e\"\u003e\u003ccode\u003e50d8c54\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/7877c9e3681a9b5aa6e16d15ce8bce8fda0477ea\"\u003e\u003ccode\u003e7877c9e\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/012775ca4d9f3c9c3b0067fafefeda5be421d404\"\u003e\u003ccode\u003e012775c\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/cd1929bb6e1eefe5430804d90714f1e60cd438d5\"\u003e\u003ccode\u003ecd1929b\u003c/code\u003e\u003c/a\u003e test: convert tests to vitest (\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/tree/HEAD/packages/config-resolver/issues/1440\"\u003e#1440\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/5de4524d147db44e627dadf222238552d6ff613d\"\u003e\u003ccode\u003e5de4524\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commit/80515513f9b4ff3e6140d335a8edfb2126b8c352\"\u003e\u003ccode\u003e8051551\u003c/code\u003e\u003c/a\u003e Version NPM packages\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/smithy-lang/smithy-typescript/commits/@smithy/config-resolver@3.0.13/packages/config-resolver\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `axios` from 1.3.4 to 1.13.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/releases\"\u003eaxios's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.5\u003c/h2\u003e\n\u003ch2\u003eRelease 1.13.5\u003c/h2\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fixed a potential \u003cstrong\u003eDenial of Service\u003c/strong\u003e issue involving the \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBug fix:\u003c/strong\u003e Resolved an issue where \u003ccode\u003eAxiosError\u003c/code\u003e could be missing the \u003ccode\u003estatus\u003c/code\u003e field on and after \u003cstrong\u003ev1.13.3\u003c/strong\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch4\u003eSecurity\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix Denial of Service via \u003ccode\u003e__proto__\u003c/code\u003e key in \u003ccode\u003emergeConfig\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7369\"\u003e#7369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFixes\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix/5657. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7313\"\u003e#7313\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure \u003ccode\u003estatus\u003c/code\u003e is present in \u003ccode\u003eAxiosError\u003c/code\u003e on and after v1.13.3. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7368\"\u003e#7368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eFeatures / Improvements\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAdd input validation to \u003ccode\u003eisAbsoluteURL\u003c/code\u003e. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRefactor: bump minor package versions. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7356\"\u003e#7356\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eDocumentation\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eClarify object-check comment. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix deprecated \u003ccode\u003eBuffer\u003c/code\u003e constructor usage and README formatting. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eCI / Maintenance\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eChore: fix issues with YAML. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7355\"\u003e#7355\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: update workflow YAMLs. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7372\"\u003e#7372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCI: fix run condition. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7373\"\u003e#7373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDev deps: bump \u003ccode\u003ekarma-sourcemap-loader\u003c/code\u003e from 0.3.8 to 0.4.0. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7360\"\u003e#7360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eChore(release): prepare release 1.13.5. (PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7379\"\u003e#7379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew Contributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sachin11063\"\u003e\u003ccode\u003e@​sachin11063\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7323\"\u003e#7323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/asmitha-16\"\u003e\u003ccode\u003e@​asmitha-16\u003c/code\u003e\u003c/a\u003e (first contribution — PR \u003ca href=\"https://redirect.github.com/axios/axios/pull/7326\"\u003e#7326\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog:\u003c/strong\u003e \u003ca href=\"https://github.com/axios/axios/compare/v1.13.4...v1.13.5\"\u003ehttps://github.com/axios/axios/compare/v1.13.4...v1.13.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.13.4\u003c/h2\u003e\n\u003ch2\u003eOverview\u003c/h2\u003e\n\u003cp\u003eThe release addresses issues discovered in v1.13.3 and includes significant CI/CD improvements.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/axios/axios/compare/v1.13.3...v1.13.4\"\u003ev1.13.3...v1.13.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's New in v1.13.4\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003efix: issues with version 1.13.3\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7352\"\u003e#7352\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ee90dfc28abffbb61e24974b2bd3139a4a40ac76\"\u003eee90dfc\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eFixed issues discovered in v1.13.3 release\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/axios/axios/blob/v1.x/CHANGELOG.md\"\u003eaxios's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/axios/axios/compare/v1.13.2...v1.13.3\"\u003e1.13.3\u003c/a\u003e (2026-01-20)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ehttp2:\u003c/strong\u003e Use port 443 for HTTPS connections by default. (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7256\"\u003e#7256\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d7e60653460480ffacecf85383012ca1baa6263e\"\u003ed7e6065\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einterceptor:\u003c/strong\u003e handle the error in the same interceptor (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6269\"\u003e#6269\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/5945e40bb171d4ac4fc195df276cf952244f0f89\"\u003e5945e40\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emain field in package.json should correspond to cjs artifacts (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5756\"\u003e#5756\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7373fbff24cd92ce650d99ff6f7fe08c2e2a0a04\"\u003e7373fbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epackage.json:\u003c/strong\u003e add 'bun' package.json 'exports' condition. Load the Node.js build in Bun instead of the browser build (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5754\"\u003e#5754\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/b89217e3e91de17a3d55e2b8f39ceb0e9d8aeda8\"\u003eb89217e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esilentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7257\"\u003e#7257\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/7d19335e43d6754a1a9a66e424f7f7da259895bf\"\u003e7d19335\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eturn AxiosError into a native error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5394\"\u003e#5394\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5558\"\u003e#5558\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/1c6a86dd2c0623ee1af043a8491dbc96d40e883b\"\u003e1c6a86d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e add handlers to AxiosInterceptorManager interface (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5551\"\u003e#5551\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/8d1271b49fc226ed7defd07cd577bd69a55bb13a\"\u003e8d1271b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e restore AxiosError.cause type from unknown to Error (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7327\"\u003e#7327\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/d8233d9e8e9a64bfba9bbe01d475ba417510b82b\"\u003ed8233d9\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eunclear error message is thrown when specifying an empty proxy authorization (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6314\"\u003e#6314\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/6ef867e684adf7fb2343e3b29a79078a3c76dc29\"\u003e6ef867e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eundefined\u003c/code\u003e as a value in AxiosRequestConfig (\u003ca href=\"https://redirect.github.com/axios/axios/issues/5560\"\u003e#5560\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/095033c626895ecdcda2288050b63dcf948db3bd\"\u003e095033c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd automatic minor and patch upgrades to dependabot (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6053\"\u003e#6053\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/65a7584eda6164980ddb8cf5372f0afa2a04c1ed\"\u003e65a7584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Node.js coverage script using c8 (closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7289\"\u003e#7289\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7294\"\u003e#7294\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/ec9d94e9f88da13e9219acadf65061fb38ce080a\"\u003eec9d94e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadded copilot instructions (\u003ca href=\"https://github.com/axios/axios/commit/3f83143bfe617eec17f9d7dcf8bafafeeae74c26\"\u003e3f83143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecompatibility with frozen prototypes (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6265\"\u003e#6265\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/860e03396a536e9b926dacb6570732489c9d7012\"\u003e860e033\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eenhance pipeFileToResponse with error handling (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7169\"\u003e#7169\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/88d78842541610692a04282233933d078a8a2552\"\u003e88d7884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003etypes:\u003c/strong\u003e Intellisense for string literals in a widened union (\u003ca href=\"https://redirect.github.com/axios/axios/issues/6134\"\u003e#6134\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/f73474d02c5aa957b2daeecee65508557fd3c6e5\"\u003ef73474d\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com//redirect.github.com/microsoft/TypeScript/issues/33471/issues/issuecomment-1376364329\"\u003emicrosoft/TypeScript#33471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eReverts\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;fix: silentJSONParsing=false should throw on invalid JSON (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e…\u0026quot; (\u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e) (\u003ca href=\"https://github.com/axios/axios/commit/a4230f5581b3f58b6ff531b6dbac377a4fd7942a\"\u003ea4230f5\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/axios/axios/issues/7253\"\u003e#7253\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7\"\u003e#7\u003c/a\u003e \u003ca href=\"https://redirect.github.com/axios/axios/issues/7298\"\u003e#7298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c...\n\n_Description has been truncated_","html_url":"https://github.com/SeedCompany/libs/pull/82","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/SeedCompany%2Flibs/issues/82","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/82/packages"}},{"old_version":"2.1.2","new_version":"2.1.5","update_type":"patch","path":null,"pr_created_at":"2026-02-21T06:10:34.000Z","version_change":"2.1.2 → 2.1.5","issue":{"uuid":"3971422169","node_id":"PR_kwDOOMz7fs7FT6vo","number":6,"state":"closed","title":"Bump the npm_and_yarn group across 8 directories with 29 updates","user":"dependabot[bot]","labels":["dependencies","javascript"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-22T07:51:54.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-21T06:10:34.000Z","updated_at":"2026-02-22T07:51:56.000Z","time_to_close":92480,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"npm_and_yarn","update_count":29,"packages":[{"name":"fastify","old_version":"4.17.0","new_version":"5.7.3","repository_url":"https://github.com/fastify/fastify"},{"name":"form-data","old_version":"4.0.0","new_version":"4.0.5","repository_url":"https://github.com/form-data/form-data"},{"name":"esbuild","old_version":"0.15.18","new_version":"0.27.3","repository_url":"https://github.com/evanw/esbuild"},{"name":"qs","old_version":"6.13.1","new_version":"6.14.2","repository_url":"https://github.com/ljharb/qs"},{"name":"brace-expansion","old_version":"2.0.1","new_version":"2.0.2","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"brace-expansion","old_version":"1.1.11","new_version":"1.1.12","repository_url":"https://github.com/juliangruber/brace-expansion"},{"name":"formidable","old_version":"2.1.2","new_version":"2.1.5","repository_url":"https://github.com/node-formidable/formidable"},{"name":"jws","old_version":"4.0.0","new_version":"4.0.1","repository_url":"https://github.com/brianloveswords/node-jws"},{"name":"lodash","old_version":"4.17.21","new_version":"4.17.23","repository_url":"https://github.com/lodash/lodash"},{"name":"node-forge","old_version":"1.3.1","new_version":"1.3.3","repository_url":"https://github.com/digitalbazaar/forge"},{"name":"tar","old_version":"6.1.14","new_version":"removed","repository_url":"https://github.com/isaacs/node-tar"}],"path":null,"ecosystem":"npm"},"body":"Bumps the npm_and_yarn group with 10 updates in the /image.pollinations.ai directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [fastify](https://github.com/fastify/fastify) | `4.17.0` | `5.7.3` |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [esbuild](https://github.com/evanw/esbuild) | `0.15.18` | `0.27.3` |\n| [qs](https://github.com/ljharb/qs) | `6.13.1` | `6.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [formidable](https://github.com/node-formidable/formidable) | `2.1.2` | `2.1.5` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [tar](https://github.com/isaacs/node-tar) | `6.1.14` | `removed` |\n\nBumps the npm_and_yarn group with 2 updates in the /image.pollinations.ai/cloudflare-cache directory: [esbuild](https://github.com/evanw/esbuild) and [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler).\nBumps the npm_and_yarn group with 3 updates in the /image.pollinations.ai/image_gen_flux_zero directory: [brace-expansion](https://github.com/juliangruber/brace-expansion), [cookie](https://github.com/jshttp/cookie) and [path-to-regexp](https://github.com/pillarjs/path-to-regexp).\nBumps the npm_and_yarn group with 3 updates in the /pollinations-react directory: [esbuild](https://github.com/evanw/esbuild), [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) and [diff](https://github.com/kpdecker/jsdiff).\nBumps the npm_and_yarn group with 7 updates in the /pollinations-react/docs directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [glob](https://github.com/isaacs/node-glob) | `10.3.10` | `10.5.0` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [next](https://github.com/vercel/next.js) | `14.2.11` | `15.5.10` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [prismjs](https://github.com/PrismJS/prism) | `1.27.0` | `1.30.0` |\n\nBumps the npm_and_yarn group with 12 updates in the /pollinations.ai directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [form-data](https://github.com/form-data/form-data) | `3.0.2` | `3.0.4` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [node-forge](https://github.com/digitalbazaar/forge) | `1.3.1` | `1.3.3` |\n| [diff](https://github.com/kpdecker/jsdiff) | `5.2.0` | `5.2.2` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) | `2.0.7` | `2.0.9` |\n| [on-headers](https://github.com/jshttp/on-headers) | `1.0.2` | `1.1.0` |\n| [react-router](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router) | `6.28.1` | `6.30.3` |\n| [webpack](https://github.com/webpack/webpack) | `5.97.1` | `5.105.2` |\n\nBumps the npm_and_yarn group with 11 updates in the /text.pollinations.ai directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [form-data](https://github.com/form-data/form-data) | `4.0.0` | `4.0.5` |\n| [qs](https://github.com/ljharb/qs) | `6.13.0` | `6.14.2` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `1.1.11` | `1.1.12` |\n| [brace-expansion](https://github.com/juliangruber/brace-expansion) | `2.0.1` | `2.0.2` |\n| [formidable](https://github.com/node-formidable/formidable) | `3.5.1` | `3.5.4` |\n| [jws](https://github.com/brianloveswords/node-jws) | `3.2.2` | `3.2.3` |\n| [jws](https://github.com/brianloveswords/node-jws) | `4.0.0` | `4.0.1` |\n| [lodash](https://github.com/lodash/lodash) | `4.17.21` | `4.17.23` |\n| [tar](https://github.com/isaacs/node-tar) | `7.4.3` | `7.5.9` |\n| [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers) | `7.26.0` | `7.28.6` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `4.1.0` | `4.1.1` |\n| [js-yaml](https://github.com/nodeca/js-yaml) | `3.14.1` | `3.14.2` |\n| [axios](https://github.com/axios/axios) | `1.7.7` | `1.13.5` |\n| [tar-fs](https://github.com/mafintosh/tar-fs) | `3.0.6` | `3.1.1` |\n\nBumps the npm_and_yarn group with 2 updates in the /text.pollinations.ai/cloudflare-cache directory: [esbuild](https://github.com/evanw/esbuild) and [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler).\n\nUpdates `fastify` from 4.17.0 to 5.7.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fastify/fastify/releases\"\u003efastify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.7.3\u003c/h2\u003e\n\u003ch2\u003e⚠️ Security Release\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c\"\u003ehttps://github.com/fastify/fastify/security/advisories/GHSA-mrq3-vjjr-p77c\u003c/a\u003e \u003ccode\u003eCVE-2026-25224\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update Reply.send() documentation for string serialization by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6466\"\u003efastify/fastify#6466\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: ignore agents config files by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6474\"\u003efastify/fastify#6474\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update vulnerability reporting to use GitHub Security by \u003ca href=\"https://github.com/mcollina\"\u003e\u003ccode\u003e@​mcollina\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6475\"\u003efastify/fastify#6475\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.2...v5.7.3\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.2...v5.7.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.2\u003c/h2\u003e\n\u003ch2\u003e⚠️ Notice ⚠️\u003c/h2\u003e\n\u003cp\u003eParsing of the \u003ccode\u003econtent-type\u003c/code\u003e header has been improved to a strict parser in PR \u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6414\"\u003e#6414\u003c/a\u003e. This means only header values in the form described in \u003ca href=\"https://httpwg.org/specs/rfc9110.html#field.content-type\"\u003eRFC 9110\u003c/a\u003e are accepted.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: npm ignore AI related files by \u003ca href=\"https://github.com/climba03003\"\u003e\u003ccode\u003e@​climba03003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6447\"\u003efastify/fastify#6447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update sponsor url by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6450\"\u003efastify/fastify#6450\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add fastify-http-exceptions to Ecosystem.md by \u003ca href=\"https://github.com/bhouston\"\u003e\u003ccode\u003e@​bhouston\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6442\"\u003efastify/fastify#6442\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix invalid shorten form schema example by \u003ca href=\"https://github.com/climba03003\"\u003e\u003ccode\u003e@​climba03003\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6448\"\u003efastify/fastify#6448\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Simplify and tighten decorators example by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6451\"\u003efastify/fastify#6451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Fix incorrect variable use by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6455\"\u003efastify/fastify#6455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update sponsor link by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6460\"\u003efastify/fastify#6460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Fix MIT Licence file to conform to standard by \u003ca href=\"https://github.com/smith558\"\u003e\u003ccode\u003e@​smith558\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6464\"\u003efastify/fastify#6464\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: move querystringParser option under routerOptions by \u003ca href=\"https://github.com/inyourtime\"\u003e\u003ccode\u003e@​inyourtime\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6463\"\u003efastify/fastify#6463\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Updated content-type header parsing by \u003ca href=\"https://github.com/jsumners\"\u003e\u003ccode\u003e@​jsumners\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6414\"\u003efastify/fastify#6414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bhouston\"\u003e\u003ccode\u003e@​bhouston\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6442\"\u003efastify/fastify#6442\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.1...v5.7.2\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.1...v5.7.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Bump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6434\"\u003efastify/fastify#6434\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: updated version in the fastify.js by \u003ca href=\"https://github.com/Tony133\"\u003e\u003ccode\u003e@​Tony133\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6446\"\u003efastify/fastify#6446\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fastify/fastify/compare/v5.7.0...v5.7.1\"\u003ehttps://github.com/fastify/fastify/compare/v5.7.0...v5.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: Improved firebase serverless guide about process remaining stuck by \u003ca href=\"https://github.com/alexandercerutti\"\u003e\u003ccode\u003e@​alexandercerutti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6380\"\u003efastify/fastify#6380\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update migration guide with date-time breaking change by \u003ca href=\"https://github.com/craftsman01\"\u003e\u003ccode\u003e@​craftsman01\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6110\"\u003efastify/fastify#6110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove test file by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6384\"\u003efastify/fastify#6384\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: speed up loading with custom compiler by \u003ca href=\"https://github.com/Eomm\"\u003e\u003ccode\u003e@​Eomm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6383\"\u003efastify/fastify#6383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: replace all instances of twitter.com with x.com by \u003ca href=\"https://github.com/cseas\"\u003e\u003ccode\u003e@​cseas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fastify/fastify/pull/6355\"\u003efastify/fastify#6355\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/49468eddb7c59e07fb95183afbf03498fccac99e\"\u003e\u003ccode\u003e49468ed\u003c/code\u003e\u003c/a\u003e Bumped v5.7.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/eb11156396f6a5fedaceed0140aed2b7f026be37\"\u003e\u003ccode\u003eeb11156\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/d98ce2a0c030e18d27d93ed000788f95944ed910\"\u003e\u003ccode\u003ed98ce2a\u003c/code\u003e\u003c/a\u003e docs: update vulnerability reporting to use GitHub Security (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6475\"\u003e#6475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/17172c40506604fd15f8e5f17299b671d4b58686\"\u003e\u003ccode\u003e17172c4\u003c/code\u003e\u003c/a\u003e Ignore agents config files (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6474\"\u003e#6474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/b48826f07beaa925809c5e347d67a7e2502eb156\"\u003e\u003ccode\u003eb48826f\u003c/code\u003e\u003c/a\u003e docs: update Reply.send() documentation for string serialization (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6466\"\u003e#6466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/e1e4fe75910c36e1b9ebb87026ca16c053a9c1f2\"\u003e\u003ccode\u003ee1e4fe7\u003c/code\u003e\u003c/a\u003e v5.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/32d7b6add39ddf082d92579a58bea7018c5ac821\"\u003e\u003ccode\u003e32d7b6a\u003c/code\u003e\u003c/a\u003e chore: Updated content-type header parsing (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6414\"\u003e#6414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/f4a6ac1d0321e9f1757c165a2d423ccbefe7c9c9\"\u003e\u003ccode\u003ef4a6ac1\u003c/code\u003e\u003c/a\u003e docs: move querystringParser example under routerOptions (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6463\"\u003e#6463\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/2af83d64b53a0a786141d93edb9ffefac8b6446a\"\u003e\u003ccode\u003e2af83d6\u003c/code\u003e\u003c/a\u003e fix: Fix MIT Licence file to conform to standard (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6464\"\u003e#6464\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fastify/fastify/commit/5c14e05670c80455b99286ee0b6eac05eabec831\"\u003e\u003ccode\u003e5c14e05\u003c/code\u003e\u003c/a\u003e chore: update sponsor link (\u003ca href=\"https://redirect.github.com/fastify/fastify/issues/6460\"\u003e#6460\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fastify/fastify/compare/4.17.0...v5.7.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `form-data` from 4.0.0 to 4.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/releases\"\u003eform-data's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.4\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.3\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.2\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/form-data/form-data/blob/master/CHANGELOG.md\"\u003eform-data's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.4...v4.0.5\"\u003ev4.0.5\u003c/a\u003e - 2025-11-17\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Tests] Switch to newer v8 prediction library; enable node 24 testing \u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c90856375e498793c7\"\u003e\u003ccode\u003e5822467\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set Symbol.toStringTag in the proper place \u003ca href=\"https://github.com/form-data/form-data/commit/76d0dee43933b5e167f7f09e5d9cbbd1cf911aa7\"\u003e\u003ccode\u003e76d0dee\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.3...v4.0.4\"\u003ev4.0.4\u003c/a\u003e - 2025-07-16\u003c/h2\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23 \u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] Switch to using \u003ccode\u003ecrypto\u003c/code\u003e random for boundary values \u003ca href=\"https://github.com/form-data/form-data/commit/3d1723080e6577a66f17f163ecd345a21d8d0fd0\"\u003e\u003ccode\u003e3d17230\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] fix linting errors \u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] actually ensure the readme backup isn’t published \u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/58c25d76406a5b0dfdf54045cf252563f2bbda8d\"\u003e\u003ccode\u003e58c25d7\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix readme capitalization \u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.2...v4.0.3\"\u003ev4.0.3\u003c/a\u003e - 2025-06-05\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eappend\u003c/code\u003e: avoid a crash on nullish values \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/577\"\u003e\u003ccode\u003e[#577](https://github.com/form-data/form-data/issues/577)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCommits\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[eslint] use a shared config \u003ca href=\"https://github.com/form-data/form-data/commit/426ba9ac440f95d1998dac9a5cd8d738043b048f\"\u003e\u003ccode\u003e426ba9a\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[eslint] fix some spacing issues \u003ca href=\"https://github.com/form-data/form-data/commit/20941917f0e9487e68c564ebc3157e23609e2939\"\u003e\u003ccode\u003e2094191\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Refactor] use \u003ccode\u003ehasown\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/81ab41b46fdf34f5d89d7ff30b513b0925febfaa\"\u003e\u003ccode\u003e81ab41b\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] validate boundary type in \u003ccode\u003esetBoundary()\u003c/code\u003e method \u003ca href=\"https://github.com/form-data/form-data/commit/8d8e4693093519f7f18e3c597d1e8df8c493de9e\"\u003e\u003ccode\u003e8d8e469\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] add tests to check the behavior of \u003ccode\u003egetBoundary\u003c/code\u003e with non-strings \u003ca href=\"https://github.com/form-data/form-data/commit/837b8a1f7562bfb8bda74f3fc538adb7a5858995\"\u003e\u003ccode\u003e837b8a1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] remove unused deps \u003ca href=\"https://github.com/form-data/form-data/commit/870e4e665935e701bf983a051244ab928e62d58e\"\u003e\u003ccode\u003e870e4e6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] remove local commit hooks \u003ca href=\"https://github.com/form-data/form-data/commit/e6e83ccb545a5619ed6cd04f31d5c2f655eb633e\"\u003e\u003ccode\u003ee6e83cc\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e \u003ca href=\"https://github.com/form-data/form-data/commit/4066fd6f65992b62fa324a6474a9292a4f88c916\"\u003e\u003ccode\u003e4066fd6\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[meta] fix scripts to use prepublishOnly \u003ca href=\"https://github.com/form-data/form-data/commit/c4bbb13c0ef669916657bc129341301b1d331d75\"\u003e\u003ccode\u003ec4bbb13\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.1...v4.0.2\"\u003ev4.0.2\u003c/a\u003e - 2025-02-14\u003c/h2\u003e\n\u003ch3\u003eMerged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/573\"\u003e\u003ccode\u003e[#573](https://github.com/form-data/form-data/issues/573)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (npmignore): ignore temporary build files \u003ca href=\"https://redirect.github.com/form-data/form-data/pull/532\"\u003e\u003ccode\u003e[#532](https://github.com/form-data/form-data/issues/532)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] set \u003ccode\u003eSymbol.toStringTag\u003c/code\u003e when available (\u003ca href=\"https://redirect.github.com/form-data/form-data/issues/573\"\u003e#573\u003c/a\u003e) \u003ca href=\"https://redirect.github.com/form-data/form-data/issues/396\"\u003e\u003ccode\u003e[#396](https://github.com/form-data/form-data/issues/396)\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/68ff7dda8834d6de095a7008cef0e03bc252ca98\"\u003e\u003ccode\u003e68ff7dd\u003c/code\u003e\u003c/a\u003e v4.0.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5822467f0ec21f6ad613c1c90856375e498793c7\"\u003e\u003ccode\u003e5822467\u003c/code\u003e\u003c/a\u003e [Dev Deps] update \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003eeslint\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/76d0dee43933b5e167f7f09e5d9cbbd1cf911aa7\"\u003e\u003ccode\u003e76d0dee\u003c/code\u003e\u003c/a\u003e [Fix] set Symbol.toStringTag in the proper place\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/16e00765342106876f98a1c9703314006c9e937a\"\u003e\u003ccode\u003e16e0076\u003c/code\u003e\u003c/a\u003e [Tests] Switch to newer v8 prediction library; enable node 24 testing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/41996f5ac73a867046d48512cab62e64fc846dad\"\u003e\u003ccode\u003e41996f5\u003c/code\u003e\u003c/a\u003e v4.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/316c82ba93fd4985af757b771b9a1f26d3b709ef\"\u003e\u003ccode\u003e316c82b\u003c/code\u003e\u003c/a\u003e [meta] actually ensure the readme backup isn’t published\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/2300ca19595b0ee96431e868fe2a40db79e41c61\"\u003e\u003ccode\u003e2300ca1\u003c/code\u003e\u003c/a\u003e [meta] fix readme capitalization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/811f68282fab0315209d0e2d1c44b6c32ea0d479\"\u003e\u003ccode\u003e811f682\u003c/code\u003e\u003c/a\u003e [meta] add \u003ccode\u003eauto-changelog\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/5e340800b5f8914213e4e0378c084aae71cfd73a\"\u003e\u003ccode\u003e5e34080\u003c/code\u003e\u003c/a\u003e [Tests] fix linting errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/form-data/form-data/commit/1d11a76434d101f22fdb26b8aef8615f28b98402\"\u003e\u003ccode\u003e1d11a76\u003c/code\u003e\u003c/a\u003e [Tests] handle predict-v8-randomness failures in node \u0026lt; 17 and node \u0026gt; 23\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/form-data/form-data/compare/v4.0.0...v4.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~ljharb\"\u003eljharb\u003c/a\u003e, a new releaser for form-data since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eInstall script changes\u003c/summary\u003e\n\u003cp\u003eThis version modifies \u003ccode\u003eprepublish\u003c/code\u003e script that runs during installation. Review the package contents before updating.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `esbuild` from 0.15.18 to 0.27.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/releases\"\u003eesbuild's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.27.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003ePreserve URL fragments in data URLs (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4370\"\u003e#4370\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eConsider the following HTML, CSS, and SVG:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eindex.html\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"html\"\u003e\u003ccode\u003e\u0026lt;!DOCTYPE html\u0026gt;\n\u0026lt;html\u0026gt;\n  \u0026lt;head\u0026gt;\u0026lt;link rel=\u0026quot;stylesheet\u0026quot; href=\u0026quot;icons.css\u0026quot;\u0026gt;\u0026lt;/head\u0026gt;\n  \u0026lt;body\u0026gt;\u0026lt;div class=\u0026quot;triangle\u0026quot;\u0026gt;\u0026lt;/div\u0026gt;\u0026lt;/body\u0026gt;\n\u0026lt;/html\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003eicons.css\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e.triangle {\n  width: 10px;\n  height: 10px;\n  background: currentColor;\n  clip-path: url(./triangle.svg#x);\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ccode\u003etriangle.svg\u003c/code\u003e:\u003c/p\u003e\n\u003cpre lang=\"xml\"\u003e\u003ccode\u003e\u0026lt;svg xmlns=\u0026quot;http://www.w3.org/2000/svg\u0026quot;\u0026gt;\n  \u0026lt;defs\u0026gt;\n    \u0026lt;clipPath id=\u0026quot;x\u0026quot;\u0026gt;\n      \u0026lt;path d=\u0026quot;M0 0H10V10Z\u0026quot;/\u0026gt;\n    \u0026lt;/clipPath\u0026gt;\n  \u0026lt;/defs\u0026gt;\n\u0026lt;/svg\u0026gt;\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThe CSS uses a URL fragment (the \u003ccode\u003e#x\u003c/code\u003e) to reference the \u003ccode\u003eclipPath\u003c/code\u003e element in the SVG file. Previously esbuild's CSS bundler didn't preserve the URL fragment when bundling the SVG using the \u003ccode\u003edataurl\u003c/code\u003e loader, which broke the bundled CSS. With this release, esbuild will now preserve the URL fragment in the bundled CSS:\u003c/p\u003e\n\u003cpre lang=\"css\"\u003e\u003ccode\u003e/* icons.css */\n.triangle {\n  width: 10px;\n  height: 10px;\n  background: currentColor;\n  clip-path: url('data:image/svg+xml,\u0026lt;svg xmlns=\u0026quot;http://www.w3.org/2000/svg\u0026quot;\u0026gt;\u0026lt;defs\u0026gt;\u0026lt;clipPath id=\u0026quot;x\u0026quot;\u0026gt;\u0026lt;path d=\u0026quot;M0 0H10V10Z\u0026quot;/\u0026gt;\u0026lt;/clipPath\u0026gt;\u0026lt;/defs\u0026gt;\u0026lt;/svg\u0026gt;#x');\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/evanw/esbuild/blob/main/CHANGELOG-2022.md\"\u003eesbuild's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog: 2022\u003c/h1\u003e\n\u003cp\u003eThis changelog documents all esbuild versions published in the year 2022 (versions 0.14.11 through 0.16.12).\u003c/p\u003e\n\u003ch2\u003e0.16.12\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eLoader defaults to \u003ccode\u003ejs\u003c/code\u003e for extensionless files (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/2776\"\u003e#2776\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eCertain packages contain files without an extension. For example, the \u003ccode\u003eyargs\u003c/code\u003e package contains the file \u003ccode\u003eyargs/yargs\u003c/code\u003e which has no extension. Node, Webpack, and Parcel can all understand code that imports \u003ccode\u003eyargs/yargs\u003c/code\u003e because they assume that the file is JavaScript. However, esbuild was previously unable to understand this code because it relies on the file extension to tell it how to interpret the file. With this release, esbuild will now assume files without an extension are JavaScript files. This can be customized by setting the loader for \u003ccode\u003e\u0026quot;\u0026quot;\u003c/code\u003e (the empty string, representing files without an extension) to another loader. For example, if you want files without an extension to be treated as CSS instead, you can do that like this:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eCLI:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003eesbuild --bundle --loader:=css\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eJS:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003eesbuild.build({\n  bundle: true,\n  loader: { '': 'css' },\n})\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eGo:\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eapi.Build(api.BuildOptions{\n  Bundle: true,\n  Loader: map[string]api.Loader{\u0026quot;\u0026quot;: api.LoaderCSS},\n})\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eIn addition, the \u003ccode\u003e\u0026quot;type\u0026quot;\u003c/code\u003e field in \u003ccode\u003epackage.json\u003c/code\u003e files now only applies to files with an explicit \u003ccode\u003e.js\u003c/code\u003e, \u003ccode\u003e.jsx\u003c/code\u003e, \u003ccode\u003e.ts\u003c/code\u003e, or \u003ccode\u003e.tsx\u003c/code\u003e extension. Previously it was incorrectly applied by esbuild to all files that had an extension other than \u003ccode\u003e.mjs\u003c/code\u003e, \u003ccode\u003e.mts\u003c/code\u003e, \u003ccode\u003e.cjs\u003c/code\u003e, or \u003ccode\u003e.cts\u003c/code\u003e including extensionless files. So for example an extensionless file in a \u003ccode\u003e\u0026quot;type\u0026quot;: \u0026quot;module\u0026quot;\u003c/code\u003e package is now treated as CommonJS instead of ESM.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e0.16.11\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAvoid a syntax error in the presence of direct \u003ccode\u003eeval\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/2761\"\u003e#2761\u003c/a\u003e)\u003c/p\u003e\n\u003cp\u003eThe behavior of nested \u003ccode\u003efunction\u003c/code\u003e declarations in JavaScript depends on whether the code is run in strict mode or not. It would be problematic if esbuild preserved nested \u003ccode\u003efunction\u003c/code\u003e declarations in its output because then the behavior would depend on whether the output was run in strict mode or not instead of respecting the strict mode behavior of the original source code. To avoid this, esbuild transforms nested \u003ccode\u003efunction\u003c/code\u003e declarations to preserve the intended behavior of the original source code regardless of whether the output is run in strict mode or not:\u003c/p\u003e\n\u003cpre lang=\"js\"\u003e\u003ccode\u003e// Original code\nif (true) {\n  function foo() {}\n  console.log(!!foo)\n  foo = null\n  console.log(!!foo)\n}\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/9129e00e6c36a3e374820cb5e3fc2cd319c8ab85\"\u003e\u003ccode\u003e9129e00\u003c/code\u003e\u003c/a\u003e publish 0.27.3 to npm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/e20e4115acda9c9f052fdd1ec8d7d5c5489e837b\"\u003e\u003ccode\u003ee20e411\u003c/code\u003e\u003c/a\u003e small fix to release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/0dc0f2dee556460bd7b81d5bbbae5a2f86449ab6\"\u003e\u003ccode\u003e0dc0f2d\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4322\"\u003e#4322\u003c/a\u003e: parse and print CSS \u003ccode\u003e@scope\u003c/code\u003e rules\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/55fe39164cd3429fcb92c6f358a8dfe2f6e6e559\"\u003e\u003ccode\u003e55fe391\u003c/code\u003e\u003c/a\u003e update firefox css gradient support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/2c35297c7ad249a51b9cc3974fa91f74dc13f68c\"\u003e\u003ccode\u003e2c35297\u003c/code\u003e\u003c/a\u003e update gradient lowering transform\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/9209e4445abe7610018f0f758fd5d1fa13ec3ea8\"\u003e\u003ccode\u003e9209e44\u003c/code\u003e\u003c/a\u003e Update Go to 1.25.7 (\u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4388\"\u003e#4388\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/e8d861b68cf8c3c3a4806ec87444ee48b9af1ade\"\u003e\u003ccode\u003ee8d861b\u003c/code\u003e\u003c/a\u003e close \u003ca href=\"https://redirect.github.com/evanw/esbuild/issues/4374\"\u003e#4374\u003c/a\u003e: compat table for the \u003ccode\u003eusing\u003c/code\u003e feature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/19b8887368396934957abd75f316cc069d6cc067\"\u003e\u003ccode\u003e19b8887\u003c/code\u003e\u003c/a\u003e no longer need \u003ccode\u003ewilliamkapke/node-compat-table\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/7e442189722b54bc6c574ae1148e1014d99e5f32\"\u003e\u003ccode\u003e7e44218\u003c/code\u003e\u003c/a\u003e the \u003ccode\u003ekangax/compat-table\u003c/code\u003e repo moved to a new url\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evanw/esbuild/commit/23b9338ed5efbdfa29d59b8b0d8088b1761fdc39\"\u003e\u003ccode\u003e23b9338\u003c/code\u003e\u003c/a\u003e run \u003ccode\u003emake update-compat-table\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/evanw/esbuild/compare/v0.15.18...v0.27.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by [GitHub Actions](\u003ca href=\"https://www.npmjs.com/~GitHub\"\u003ehttps://www.npmjs.com/~GitHub\u003c/a\u003e Actions), a new releaser for esbuild since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `qs` from 6.13.1 to 6.14.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ljharb/qs/blob/main/CHANGELOG.md\"\u003eqs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/\u003ccode\u003eparseArrayValue\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e is true (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/529\"\u003e#529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove extraneous comments (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/545\"\u003e#545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.1\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Fix] ensure \u003ccode\u003earrayLimit\u003c/code\u003e applies to \u003ccode\u003e[]\u003c/code\u003e notation as well\u003c/li\u003e\n\u003cli\u003e[Fix] \u003ccode\u003eparse\u003c/code\u003e: when a custom decoder returns \u003ccode\u003enull\u003c/code\u003e for a key, ignore that key\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: extract key segment splitting helper\u003c/li\u003e\n\u003cli\u003e[meta] add threat model\u003c/li\u003e\n\u003cli\u003e[actions] add workflow permissions\u003c/li\u003e\n\u003cli\u003e[Tests] \u003ccode\u003estringify\u003c/code\u003e: increase coverage\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003eeslint\u003c/code\u003e, \u003ccode\u003e@ljharb/eslint-config\u003c/code\u003e, \u003ccode\u003enpmignore\u003c/code\u003e, \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003efor-each\u003c/code\u003e, \u003ccode\u003eobject-inspect\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.14.0\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[New] \u003ccode\u003eparse\u003c/code\u003e: add \u003ccode\u003ethrowOnParameterLimitExceeded\u003c/code\u003e option (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/517\"\u003e#517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Refactor] \u003ccode\u003eparse\u003c/code\u003e: use \u003ccode\u003eutils.combine\u003c/code\u003e more\u003c/li\u003e\n\u003cli\u003e[patch] \u003ccode\u003eparse\u003c/code\u003e: add explicit \u003ccode\u003ethrowOnLimitExceeded\u003c/code\u003e default\u003c/li\u003e\n\u003cli\u003e[actions] use shared action; re-add finishers\u003c/li\u003e\n\u003cli\u003e[meta] Fix changelog formatting bug\u003c/li\u003e\n\u003cli\u003e[Deps] update \u003ccode\u003eside-channel\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Dev Deps] update \u003ccode\u003ees-value-fixtures\u003c/code\u003e, \u003ccode\u003ehas-bigints\u003c/code\u003e, \u003ccode\u003ehas-proto\u003c/code\u003e, \u003ccode\u003ehas-symbols\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[Tests] increase coverage\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.3\u003c/strong\u003e\u003c/h2\u003e\n\u003cp\u003e[Fix] fix regressions from robustness refactor\n[actions] update reusable workflows\u003c/p\u003e\n\u003ch2\u003e\u003cstrong\u003e6.13.2\u003c/strong\u003e\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[Robustness] avoid \u003ccode\u003e.push\u003c/code\u003e, use \u003ccode\u003evoid\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e[readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/543\"\u003e#543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output (\u003ca href=\"https://redirect.github.com/ljharb/qs/issues/418\"\u003e#418\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[readme] replace runkit CI badge with shields.io check-runs badge\u003c/li\u003e\n\u003cli\u003e[actions] fix rebase workflow permissions\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/bdcf0c7f82387c18ac8fabfccd2f440645cef47b\"\u003e\u003ccode\u003ebdcf0c7\u003c/code\u003e\u003c/a\u003e v6.14.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/294db90c812ddbe7d7a35d5687c505fd21a2d6a2\"\u003e\u003ccode\u003e294db90\u003c/code\u003e\u003c/a\u003e [readme] document that \u003ccode\u003eaddQueryPrefix\u003c/code\u003e does not add \u003ccode\u003e?\u003c/code\u003e to empty output\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/5c308e5516c270a78caa6f278465914090f91ec6\"\u003e\u003ccode\u003e5c308e5\u003c/code\u003e\u003c/a\u003e [readme] clarify \u003ccode\u003eparseArrays\u003c/code\u003e and \u003ccode\u003earrayLimit\u003c/code\u003e documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/6addf8cf738d529c54d91f6f3ffb6c1be91bbfdc\"\u003e\u003ccode\u003e6addf8c\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: mark overflow objects for indexed notation exceeding \u003ccode\u003earrayLimit\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/cfc108f662326d6ab540f3545ef0b832baf83cdf\"\u003e\u003ccode\u003ecfc108f\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003earrayLimit\u003c/code\u003e means max count, not max index, in \u003ccode\u003ecombine\u003c/code\u003e/\u003ccode\u003emerge\u003c/code\u003e/`pars...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/febb64442a80e49200211fa38d3c96b58024ac77\"\u003e\u003ccode\u003efebb644\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: throw on \u003ccode\u003earrayLimit\u003c/code\u003e exceeded with indexed notation when `thr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/f6a7abff1f13d644db9b05fe4f2c98ada6bf8482\"\u003e\u003ccode\u003ef6a7abf\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: enforce \u003ccode\u003earrayLimit\u003c/code\u003e on \u003ccode\u003ecomma\u003c/code\u003e-parsed values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/fbc5206c25b4d1851cea683f02c10756c521d15a\"\u003e\u003ccode\u003efbc5206\u003c/code\u003e\u003c/a\u003e [Fix] \u003ccode\u003eparse\u003c/code\u003e: fix error message to reflect arrayLimit as max index; remove e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/1b9a8b4e78c6aff4c22fa559107227f02fd0216a\"\u003e\u003ccode\u003e1b9a8b4\u003c/code\u003e\u003c/a\u003e [actions] fix rebase workflow permissions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ljharb/qs/commit/2a35775614e0fb46ac8a3060201a32a7c23a7fda\"\u003e\u003ccode\u003e2a35775\u003c/code\u003e\u003c/a\u003e [meta] fix changelog typo (\u003ccode\u003earrayLength\u003c/code\u003e → \u003ccode\u003earrayLimit\u003c/code\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ljharb/qs/compare/v6.13.1...v6.14.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 2.0.1 to 2.0.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 2.x  14f1d91\u003c/li\u003e\n\u003cli\u003efmt  ed7780a\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  36603d5\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/a3efcee659ef0fb381e2b50d759c720900580a15\"\u003e\u003ccode\u003ea3efcee\u003c/code\u003e\u003c/a\u003e 2.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/14f1d91b0523ffb0c8bbe6a28dc98ddc56ae53bc\"\u003e\u003ccode\u003e14f1d91\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 2.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ed7780ab1cb8a7696f1813b5a945fcc70d8d1990\"\u003e\u003ccode\u003eed7780a\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/36603d5f3599a37af9e85eda30acd7d28599c36e\"\u003e\u003ccode\u003e36603d5\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `brace-expansion` from 1.1.11 to 1.1.12\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/juliangruber/brace-expansion/releases\"\u003ebrace-expansion's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003epkg: publish on tag 2.x  14f1d91\u003c/li\u003e\n\u003cli\u003efmt  ed7780a\u003c/li\u003e\n\u003cli\u003eFix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)  36603d5\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ehttps://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/a3efcee659ef0fb381e2b50d759c720900580a15\"\u003e\u003ccode\u003ea3efcee\u003c/code\u003e\u003c/a\u003e 2.0.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/14f1d91b0523ffb0c8bbe6a28dc98ddc56ae53bc\"\u003e\u003ccode\u003e14f1d91\u003c/code\u003e\u003c/a\u003e pkg: publish on tag 2.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/ed7780ab1cb8a7696f1813b5a945fcc70d8d1990\"\u003e\u003ccode\u003eed7780a\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/juliangruber/brace-expansion/commit/36603d5f3599a37af9e85eda30acd7d28599c36e\"\u003e\u003ccode\u003e36603d5\u003c/code\u003e\u003c/a\u003e Fix potential ReDoS Vulnerability or Inefficient Regular Expression (\u003ca href=\"https://redirect.github.com/juliangruber/brace-expansion/issues/65\"\u003e#65\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/juliangruber/brace-expansion/compare/v2.0.1...v2.0.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cookie` from 0.5.0 to 0.7.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jshttp/cookie/releases\"\u003ecookie's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.2\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix object assignment of \u003ccode\u003ehasOwnProperty\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/177\"\u003e#177\u003c/a\u003e)  bc38ffd\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFixed\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAllow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eAlthough not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eAdd fast path for \u003ccode\u003eserialize\u003c/code\u003e without options, use \u003ccode\u003eobj.hasOwnProperty\u003c/code\u003e when parsing (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\"\u003ehttps://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: parse cookies ~10% faster (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e by \u003ca href=\"https://github.com/kurtextrem\"\u003e\u003ccode\u003e@​kurtextrem\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/170\"\u003e#170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: narrow the validation of cookies to match RFC6265 (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/167\"\u003e#167\u003c/a\u003e by \u003ca href=\"https://github.com/bewinsnw\"\u003e\u003ccode\u003e@​bewinsnw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: add \u003ccode\u003emain\u003c/code\u003e to \u003ccode\u003epackage.json\u003c/code\u003e for rspack (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/166\"\u003e#166\u003c/a\u003e by \u003ca href=\"https://github.com/proudparrot2\"\u003e\u003ccode\u003e@​proudparrot2\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\"\u003ehttps://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e0.6.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003epartitioned\u003c/code\u003e option\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/d19eaa1a2bb9ca43ac0951edd852ba4e88e410e0\"\u003e\u003ccode\u003ed19eaa1\u003c/code\u003e\u003c/a\u003e 0.7.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/bc38ffd0eae716b199236dda061d0bdc74192dd3\"\u003e\u003ccode\u003ebc38ffd\u003c/code\u003e\u003c/a\u003e Fix object assignment of \u003ccode\u003ehasOwnProperty\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/177\"\u003e#177\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/cf4658f492c5bd96aeaf5693c3500f8495031014\"\u003e\u003ccode\u003ecf4658f\u003c/code\u003e\u003c/a\u003e 0.7.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/6a8b8f5a49af7897b98ebfb29a1c4955afa3d33e\"\u003e\u003ccode\u003e6a8b8f5\u003c/code\u003e\u003c/a\u003e Allow leading dot for domain (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/174\"\u003e#174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/58015c0b93de0b63db245cfdc5a108e511a81ad0\"\u003e\u003ccode\u003e58015c0\u003c/code\u003e\u003c/a\u003e Remove more code and perf wins (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/172\"\u003e#172\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/ab057d6c06b94a7b1e3358e69a685ae49c97b627\"\u003e\u003ccode\u003eab057d6\u003c/code\u003e\u003c/a\u003e 0.7.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/5f02ca87688481dbcf155e49ca8b61732f30e542\"\u003e\u003ccode\u003e5f02ca8\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/a5d591ce8447dd63821779724f96ad3c774c8579\"\u003e\u003ccode\u003ea5d591c\u003c/code\u003e\u003c/a\u003e Migrate history to GitHub releases\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/51968f94b5e820adeceef505539fa193ffe2d105\"\u003e\u003ccode\u003e51968f9\u003c/code\u003e\u003c/a\u003e Skip isNaN\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jshttp/cookie/commit/9e7ca51ade4b325307eedd6b4dec190983e9e2cc\"\u003e\u003ccode\u003e9e7ca51\u003c/code\u003e\u003c/a\u003e perf(parse): cache length, return early (\u003ca href=\"https://redirect.github.com/jshttp/cookie/issues/144\"\u003e#144\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jshttp/cookie/compare/v0.5.0...v0.7.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~blakeembrey\"\u003eblakeembrey\u003c/a\u003e, a new releaser for cookie since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `formidable` from 2.1.2 to 2.1.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/node-formidable/formidable/commits\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `jws` from 4.0.0 to 4.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/brianloveswords/node-jws/releases\"\u003ejws's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, addressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/auth0/node-jws/blob/master/CHANGELOG.md\"\u003ejws's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[4.0.1]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 2.0.1, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.2.3]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix advisory GHSA-869p-cjfg-cm3x: createSign and createVerify now require\nthat a non empty secret is provided (via opts.secret, opts.privateKey or opts.key)\nwhen using HMAC algorithms.\u003c/li\u003e\n\u003cli\u003eUpgrading JWA version to 1.4.2, adressing a compatibility issue for Node \u0026gt;= 25.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[3.0.0]\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: \u003ccode\u003ejwt.verify\u003c/code\u003e now requires an \u003ccode\u003ealgorithm\u003c/code\u003e parameter, and\n\u003ccode\u003ejws.createVerify\u003c/code\u003e requires an \u003ccode\u003ealgorithm\u003c/code\u003e option. The \u003ccode\u003e\u0026quot;alg\u0026quot;\u003c/code\u003e field\nsignature headers is ignored. This mitigates a critical security flaw\nin the library which would allow an attacker to generate signatures with\narbitrary contents that would be accepted by \u003ccode\u003ejwt.verify\u003c/code\u003e. See\n\u003ca href=\"https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\"\u003ehttps://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/\u003c/a\u003e\nfor details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v1.0.1...v2.0.0\"\u003e2.0.0\u003c/a\u003e - 2015-01-30\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING\u003c/strong\u003e: Default payload encoding changed from \u003ccode\u003ebinary\u003c/code\u003e to\n\u003ccode\u003eutf8\u003c/code\u003e. \u003ccode\u003eutf8\u003c/code\u003e is a is a more sensible default than \u003ccode\u003ebinary\u003c/code\u003e because\nmany payloads, as far as I can tell, will contain user-facing\nstrings that could be in any language. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eCode reorganization, thanks [\u003ca href=\"https://github.com/fearphage\"\u003e\u003ccode\u003e@​fearphage\u003c/code\u003e\u003c/a\u003e]! (\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/brianloveswords/node-jws/commit/7880050\"\u003e7880050\u003c/a\u003e\u003c!-- raw HTML omitted --\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eOption in all relevant methods for \u003ccode\u003eencoding\u003c/code\u003e. For those few users\nthat might be depending on a \u003ccode\u003ebinary\u003c/code\u003e encoding of the messages, this\nis for them. (\u003c!-- raw HTML omitted --\u003e[6b6de48]\u003c!-- raw HTML omitted --\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/34c45b2c04434f925b638de6a061de9339c0ea2e\"\u003e\u003ccode\u003e34c45b2\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/49bc39b1f5509a630e0c6849527d8bc66b29ddf5\"\u003e\u003ccode\u003e49bc39b\u003c/code\u003e\u003c/a\u003e version 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/d42350ccab74db06c95f2279d1674d7d6a1692f4\"\u003e\u003ccode\u003ed42350c\u003c/code\u003e\u003c/a\u003e Enhance tests for HMAC streaming sign and verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/5cb007cf826c70f178c9975d31e949adff75e61b\"\u003e\u003ccode\u003e5cb007c\u003c/code\u003e\u003c/a\u003e Improve secretOrKey initialization in VerifyStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/f9a2e1c8c61ed80d1aa97f03ec32ccb920cf51cb\"\u003e\u003ccode\u003ef9a2e1c\u003c/code\u003e\u003c/a\u003e Improve secret handling in SignStream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/b9fb8d30e9c009ade6379f308590f1b0703eefc3\"\u003e\u003ccode\u003eb9fb8d3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/102\"\u003e#102\u003c/a\u003e from auth0/SRE-57-Upload-opslevel-yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/95b75ee56c64d4f8c09c70e9e9662d813bab5685\"\u003e\u003ccode\u003e95b75ee\u003c/code\u003e\u003c/a\u003e Upload OpsLevel YAML\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/auth0/node-jws/commit/8857ee77623104e5cf9955932165ddf9cea1b72c\"\u003e\u003ccode\u003e8857ee7\u003c/code\u003e\u003c/a\u003e test: remove unused variable (\u003ca href=\"https://redirect.github.com/brianloveswords/node-jws/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/brianloveswords/node-jws/compare/v4.0.0...v4.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eMaintainer changes\u003c/summary\u003e\n\u003cp\u003eThis version was pushed to npm by \u003ca href=\"https://www.npmjs.com/~julien.wollscheid\"\u003ejulien.wollscheid\u003c/a\u003e, a new releaser for jws since your current version.\u003c/p\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `lodash` from 4.17.21 to 4.17.23\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dec55b7a3b382da075e2eac90089b4cd00a26cbb\"\u003e\u003ccode\u003edec55b7\u003c/code\u003e\u003c/a\u003e Bump main to v4.17.23 (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6088\"\u003e#6088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/19c9251b3631d7cf220b43bc757eb33f1084f117\"\u003e\u003ccode\u003e19c9251\u003c/code\u003e\u003c/a\u003e fix: setCacheHas JSDoc return type should be boolean (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6071\"\u003e#6071\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/b5e672995ae26929d111a6e94589f8d03fb8e578\"\u003e\u003ccode\u003eb5e6729\u003c/code\u003e\u003c/a\u003e jsdoc: Add -0 and BigInt zeros to _.compact falsey values list (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6062\"\u003e#6062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/edadd452146f7e4bad4ea684e955708931d84d81\"\u003e\u003ccode\u003eedadd45\u003c/code\u003e\u003c/a\u003e Prevent prototype pollution on baseUnset function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/4879a7a7d0a4494b0e83c7fa21bcc9fc6e7f1a6d\"\u003e\u003ccode\u003e4879a7a\u003c/code\u003e\u003c/a\u003e doc: fix autoLink function, conversion of source links (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6056\"\u003e#6056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/9648f692b0fc7c2f6a7a763d754377200126c2e8\"\u003e\u003ccode\u003e9648f69\u003c/code\u003e\u003c/a\u003e chore: remove \u003ccode\u003eyarn.lock\u003c/code\u003e file (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6053\"\u003e#6053\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/dfa407db0bf5b200f2c7a9e4f06830ceaf074be9\"\u003e\u003ccode\u003edfa407d\u003c/code\u003e\u003c/a\u003e ci: remove legacy configuration files (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6052\"\u003e#6052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/156e1965ae78b121a88f81178ab81632304e8d64\"\u003e\u003ccode\u003e156e196\u003c/code\u003e\u003c/a\u003e feat: add renovate setup (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6039\"\u003e#6039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/933e1061b8c344d3fc742cdc400175d5ffc99bce\"\u003e\u003ccode\u003e933e106\u003c/code\u003e\u003c/a\u003e ci: add pipeline for Bun (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/6023\"\u003e#6023\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lodash/lodash/commit/072a807ff7ad8ffc7c1d2c3097266e815d138e20\"\u003e\u003ccode\u003e072a807\u003c/code\u003e\u003c/a\u003e docs: update links related to Open JS Foundation (\u003ca href=\"https://redirect.github.com/lodash/lodash/issues/5968\"\u003e#5968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/lodash/lodash/compare/4.17.21...4.17.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `node-forge` from 1.3.1 to 1.3.3\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md\"\u003enode-forge's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.3.3 - 2025-12-02\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[pkcs12] Make digestAlgorithm parameters optional to fix PKCS#12/PFX issues\nintroduced in 1.3.2.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.3.2 - 2025-11-25\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eHIGH\u003c/strong\u003e: ASN.1 Validator Desynchronization\n\u003cul\u003e\n\u003cli\u003eAn Interpretation Conflict (CWE-436) vulnerability in node-forge versions\n1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1\nstructures to desynchronize schema validations, yielding a semantic\ndivergence that may bypass downstream cryptographic verifications and\nsecurity decisions.\u003c/li\u003e\n\u003cli\u003eReported by Hunter Wodzenski.\u003c/li\u003e\n\u003cli\u003eCVE ID: \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-12816\"\u003eCVE-2025-12816\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGHSA ID: \u003ca href=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq\"\u003eGHSA-5gfm-wpxj-wjgq\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHIGH\u003c/strong\u003e: ASN.1 Unbounded Recursion\n\u003cul\u003e\n\u003cli\u003eAn Uncontrolled Recursion (CWE-674) vulnerability in node-forge versions\n1.3.1 and below enables remote, unauthenticated attackers to craft deep\nASN.1 structures that trigger unbounded recursive parsing. This leads to a\nDenial-of-Service (DoS) via stack exhaustion when parsing untrusted DER\ninputs.\u003c/li\u003e\n\u003cli\u003eReported by Hunter Wodzenski.\u003c/li\u003e\n\u003cli\u003eCVE ID: \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-66031\"\u003eCVE-2025-66031\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGHSA ID: \u003ca href=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-554w-wpv2-vw27\"\u003eGHSA-554w-wpv2-vw27\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMODERATE\u003c/strong\u003e: ASN.1 OID Integer Truncation\n\u003cul\u003e\n\u003cli\u003eAn Integer Overflow (CWE-190) vulnerability in node-forge versions 1.3.1\nand below enables remote, unauthenticated attackers to craft ASN.1\nstructures containing OIDs with oversized arcs. These arcs may be decoded\nas smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the\nbypass of downstream OID-based security decisions.\u003c/li\u003e\n\u003cli\u003eReported by Hunter Wodzenski.\u003c/li\u003e\n\u003cli\u003eCVE ID: \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-66030\"\u003eCVE-2025-66030\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGHSA ID: \u003ca href=\"https://github.com/digitalbazaar/forge/security/advisories/GHSA-65ch-62r8-g69g\"\u003eGHSA-65ch-62r8-g69g\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[asn1] Fix for vulnerability identified by CVE-2025-12816 PKCS#12 MAC\nverification bypass due to missing macData enforcement and improper\nasn1.validate routine.\u003c/li\u003e\n\u003cli\u003e[asn1] Add \u003ccode\u003efromDer()\u003c/code\u003e max recursion depth check.\n\u003cul\u003e\n\u003cli\u003eAdd a \u003ccode\u003easn1.maxDepth\u003c/code\u003e global configurable maximum depth of 256.\u003c/li\u003e\n\u003cli\u003eAdd a \u003ccode\u003easn1.fromDer()\u003c/code\u003e per-call \u003ccode\u003emaxDepth\u003c/code\u003e option.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNOTE\u003c/strong\u003e: The default maximum is assumed to be higher than needed for valid\ndata. If this assumption is false then this could be a breaking change.\nPlease file an issue if there are use cases that need a higher maximum.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNOTE\u003c/strong\u003e: The per-call \u003ccode\u003emaxDepth\u003c/code\u003e parameter has not been exposed up through\nall of the API stack due to the complexities involved. Please file an issue\nif there are use cases that require this instead of changing the default\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/1cea0aff4901589ae86e314f25782bbe312f9f69\"\u003e\u003ccode\u003e1cea0af\u003c/code\u003e\u003c/a\u003e Release 1.3.3.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/5265989cf5e54cfe1e27a10d71523007ce0507b1\"\u003e\u003ccode\u003e5265989\u003c/code\u003e\u003c/a\u003e Update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/e4f3961406395dd8e985dcf841852ceca73ac3a9\"\u003e\u003ccode\u003ee4f3961\u003c/code\u003e\u003c/a\u003e Fix changelog for release.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/503979b0295cf633a30199d6bd937f4a222481a0\"\u003e\u003ccode\u003e503979b\u003c/code\u003e\u003c/a\u003e Update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/c3b3b32a8c157ac57752934d3af63b5f798b58b8\"\u003e\u003ccode\u003ec3b3b32\u003c/code\u003e\u003c/a\u003e Make digestAlgorithm parameters optional\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/6f70043a6db1abb9f3304f3d432efed3ba50fcca\"\u003e\u003ccode\u003e6f70043\u003c/code\u003e\u003c/a\u003e Update CVE details.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/f547b0d292745094190ecb250429d21e8804a375\"\u003e\u003ccode\u003ef547b0d\u003c/code\u003e\u003c/a\u003e Start 1.3.3-0.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/235ad3e70e4fdfdca4fdeb662dfba6588e2c38bd\"\u003e\u003ccode\u003e235ad3e\u003c/code\u003e\u003c/a\u003e Release 1.3.2.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/25982441171dc9815c87d3d886c5c8a1d092b334\"\u003e\u003ccode\u003e2598244\u003c/code\u003e\u003c/a\u003e Update changelog.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/digitalbazaar/forge/commit/0032dd0be8b6fb1b1092ef754d1dde91c10a95ad\"\u003e\u003ccode\u003e0032dd0\u003c/code\u003e\u003c/a\u003e Fix typos.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/digitalbazaar/forge/compare/v1.3.1...v1.3.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nRemoves `tar`\n\nUpdates `vite` from 5.4.11 to 7.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/releases\"\u003evite's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.3.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.3.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.3.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.7\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.7/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.6\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.6/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.5\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.5/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eNote: 7.2.5 failed to publish so it is skipped on npm\u003c/em\u003e\u003c/p\u003e\n\u003ch2\u003ev7.2.4\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.4/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.3\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.3/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.2\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.2/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@7.2.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@7.2.1/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003eplugin-legacy@7.2.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/plugin-legacy@7.2.0/packages/plugin-legacy/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.0-beta.1\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.0-beta.1/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.2.0-beta.0\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.2.0-beta.0/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.1.12\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.1.12/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003ch2\u003ev7.1.11\u003c/h2\u003e\n\u003cp\u003ePlease refer to \u003ca href=\"https://github.com/vitejs/vite/blob/v7.1.11/packages/vite/CHANGELOG.md\"\u003eCHANGELOG.md\u003c/a\u003e for details.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md\"\u003evite's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.3.0...v7.3.1\"\u003e7.3.1\u003c/a\u003e (2026-01-07)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd \u003ccode\u003eignoreOutdatedRequests\u003c/code\u003e option to \u003ccode\u003eoptimizeDeps\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21364\"\u003e#21364\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/9d39d373a7b4e0a93322b70b9dbeb202af06af3e\"\u003e9d39d37\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.2.7...v7.3.0\"\u003e7.3.0\u003c/a\u003e (2025-12-15)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update esbuild from ^0.25.0 to ^0.27.0 (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21183\"\u003e#21183\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/cff26ec0fc13373d7125a5eac6cb01fe63fee4b1\"\u003ecff26ec\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.2.6...v7.2.7\"\u003e7.2.7\u003c/a\u003e (2025-12-08)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eplugin shortcut support (\u003ca href=\"https://redirect.github.com/vitejs/vite/issues/21211\"\u003e#21211\u003c/a\u003e) (\u003ca href=\"https://github.com/vitejs/vite/commit/721f16343d9555ae8fc71a2e5354b22e12ff0dc3\"\u003e721f163\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.2.5...v7.2.6\"\u003e7.2.6\u003c/a\u003e (2025-12-01)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch2\u003e\u003c!-- raw HTML omitted --\u003e\u003ca href=\"https://github.com/vitejs/vite/compare/v7.2.4...v7.2.5\"\u003e7.2.5\u003c/a\u003e (2025-12-01)\u003c!-- raw HTML omitted --\u003e\u003c/h2\u003e\n\u003ch3\u003eBug F...\n\n_Description has been truncated_","html_url":"https://github.com/ccwu0918/pollinations/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ccwu0918%2Fpollinations/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"}}]}